Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-30797 (GCVE-0-2021-30797)
Vulnerability from cvelistv5 – Published: 2021-09-08 13:50 – Updated: 2024-08-03 22:40
VLAI?
EPSS
Summary
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.
Severity ?
No CVSS data available.
CWE
- Processing maliciously crafted web content may lead to code execution
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://support.apple.com/en-us/HT212601 | x_refsource_MISC |
| https://support.apple.com/en-us/HT212602 | x_refsource_MISC |
| https://support.apple.com/en-us/HT212605 | x_refsource_MISC |
| https://support.apple.com/en-us/HT212604 | x_refsource_MISC |
| https://support.apple.com/en-us/HT212606 | x_refsource_MISC |
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T22:40:32.184Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT212601"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT212602"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT212605"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT212604"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://support.apple.com/en-us/HT212606"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "iOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "14.7",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "11.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "14.7",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "7.6",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "macOS",
"vendor": "Apple",
"versions": [
{
"lessThan": "14.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Processing maliciously crafted web content may lead to code execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-08T13:50:13.000Z",
"orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"shortName": "apple"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/en-us/HT212601"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/en-us/HT212602"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/en-us/HT212605"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/en-us/HT212604"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://support.apple.com/en-us/HT212606"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2021-30797",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "iOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.7"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "11.5"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.7"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "7.6"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.1"
}
]
}
}
]
},
"vendor_name": "Apple"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Processing maliciously crafted web content may lead to code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/en-us/HT212601",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"name": "https://support.apple.com/en-us/HT212602",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"name": "https://support.apple.com/en-us/HT212605",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212605"
},
{
"name": "https://support.apple.com/en-us/HT212604",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212604"
},
{
"name": "https://support.apple.com/en-us/HT212606",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212606"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
"assignerShortName": "apple",
"cveId": "CVE-2021-30797",
"datePublished": "2021-09-08T13:50:13.000Z",
"dateReserved": "2021-04-13T00:00:00.000Z",
"dateUpdated": "2024-08-03T22:40:32.184Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-30797",
"date": "2026-05-19",
"epss": "0.00672",
"percentile": "0.71609"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.1.2\", \"matchCriteriaId\": \"85676273-4DB8-403C-A7D5-27F6213A08C0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.7\", \"matchCriteriaId\": \"3B5771AF-0A7B-4CB9-85C1-AE624498D080\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.7\", \"matchCriteriaId\": \"D3AF02B7-BF1F-483A-BA47-9B5B92AF1D29\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"11.5\", \"matchCriteriaId\": \"91CD5E8A-20E3-4193-BD1F-99FB1147081C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.7\", \"matchCriteriaId\": \"FC9C8462-9BFF-4CC8-AB3A-0AAA8B20A81F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"7.6\", \"matchCriteriaId\": \"94EF9266-E8BC-4F20-B724-A3151A06192C\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.\"}, {\"lang\": \"es\", \"value\": \"Este problema se abord\\u00f3 con una comprobaci\\u00f3n mejorada. Este problema se corrigi\\u00f3 en iOS versi\\u00f3n 14.7, Safari versi\\u00f3n 14.1.2, macOS Big Sur versi\\u00f3n 11.5, watchOS versi\\u00f3n 7.6, tvOS versi\\u00f3n 14.7. El procesamiento de contenido web dise\\u00f1ado maliciosamente puede conllevar a una ejecuci\\u00f3n de c\\u00f3digo\"}]",
"id": "CVE-2021-30797",
"lastModified": "2024-11-21T06:04:44.420",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2021-09-08T14:15:11.703",
"references": "[{\"url\": \"https://support.apple.com/en-us/HT212601\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212602\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212604\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212605\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212606\", \"source\": \"product-security@apple.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212601\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212602\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212604\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212605\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT212606\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-30797\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2021-09-08T14:15:11.703\",\"lastModified\":\"2024-11-21T06:04:44.420\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.\"},{\"lang\":\"es\",\"value\":\"Este problema se abord\u00f3 con una comprobaci\u00f3n mejorada. Este problema se corrigi\u00f3 en iOS versi\u00f3n 14.7, Safari versi\u00f3n 14.1.2, macOS Big Sur versi\u00f3n 11.5, watchOS versi\u00f3n 7.6, tvOS versi\u00f3n 14.7. El procesamiento de contenido web dise\u00f1ado maliciosamente puede conllevar a una ejecuci\u00f3n de c\u00f3digo\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.1.2\",\"matchCriteriaId\":\"85676273-4DB8-403C-A7D5-27F6213A08C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7\",\"matchCriteriaId\":\"3B5771AF-0A7B-4CB9-85C1-AE624498D080\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7\",\"matchCriteriaId\":\"D3AF02B7-BF1F-483A-BA47-9B5B92AF1D29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.5\",\"matchCriteriaId\":\"91CD5E8A-20E3-4193-BD1F-99FB1147081C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.7\",\"matchCriteriaId\":\"FC9C8462-9BFF-4CC8-AB3A-0AAA8B20A81F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.6\",\"matchCriteriaId\":\"94EF9266-E8BC-4F20-B724-A3151A06192C\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/HT212601\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212602\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212604\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212605\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212606\",\"source\":\"product-security@apple.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212601\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212602\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212604\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212605\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT212606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
CERTFR-2021-AVI-562
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 2021-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Big Sur versions ant\u00e9rieures \u00e0 11.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave versions ant\u00e9rieures \u00e0 2021-005",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30784"
},
{
"name": "CVE-2021-30799",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30799"
},
{
"name": "CVE-2021-30672",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30672"
},
{
"name": "CVE-2021-30765",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30765"
},
{
"name": "CVE-2021-30731",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30731"
},
{
"name": "CVE-2021-30792",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30792"
},
{
"name": "CVE-2018-25014",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25014"
},
{
"name": "CVE-2021-30787",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30787"
},
{
"name": "CVE-2021-30782",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30782"
},
{
"name": "CVE-2021-30800",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30800"
},
{
"name": "CVE-2021-30733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30733"
},
{
"name": "CVE-2021-30766",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30766"
},
{
"name": "CVE-2018-25011",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25011"
},
{
"name": "CVE-2021-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30774"
},
{
"name": "CVE-2021-30778",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30778"
},
{
"name": "CVE-2021-30763",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30763"
},
{
"name": "CVE-2021-30776",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30776"
},
{
"name": "CVE-2021-30677",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30677"
},
{
"name": "CVE-2021-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30775"
},
{
"name": "CVE-2021-30789",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30789"
},
{
"name": "CVE-2021-30759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30759"
},
{
"name": "CVE-2018-25010",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25010"
},
{
"name": "CVE-2021-30748",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30748"
},
{
"name": "CVE-2021-30796",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30796"
},
{
"name": "CVE-2021-30791",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30791"
},
{
"name": "CVE-2021-30770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30770"
},
{
"name": "CVE-2021-30797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30797"
},
{
"name": "CVE-2021-30788",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30788"
},
{
"name": "CVE-2021-30790",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30790"
},
{
"name": "CVE-2021-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30703"
},
{
"name": "CVE-2021-30772",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30772"
},
{
"name": "CVE-2021-30781",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30781"
},
{
"name": "CVE-2021-30773",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30773"
},
{
"name": "CVE-2020-36328",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36328"
},
{
"name": "CVE-2021-30758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30758"
},
{
"name": "CVE-2021-30803",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30803"
},
{
"name": "CVE-2021-30798",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30798"
},
{
"name": "CVE-2021-30769",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30769"
},
{
"name": "CVE-2021-30760",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30760"
},
{
"name": "CVE-2021-30785",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30785"
},
{
"name": "CVE-2021-30780",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30780"
},
{
"name": "CVE-2020-36330",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36330"
},
{
"name": "CVE-2021-30793",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30793"
},
{
"name": "CVE-2021-30779",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30779"
},
{
"name": "CVE-2021-30805",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30805"
},
{
"name": "CVE-2021-30786",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30786"
},
{
"name": "CVE-2020-36329",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36329"
},
{
"name": "CVE-2021-30804",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30804"
},
{
"name": "CVE-2021-30795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30795"
},
{
"name": "CVE-2021-30777",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30777"
},
{
"name": "CVE-2020-36331",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36331"
},
{
"name": "CVE-2021-30768",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30768"
},
{
"name": "CVE-2021-30802",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30802"
},
{
"name": "CVE-2021-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3518"
},
{
"name": "CVE-2021-30783",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30783"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-562",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212601 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212600 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212600"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212602 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212603 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212603"
}
]
}
CERTFR-2021-AVI-568
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Apple Safari. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneReferences
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Safari versions ant\u00e9rieures \u00e0 14.1.2",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30797"
},
{
"name": "CVE-2021-30758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30758"
},
{
"name": "CVE-2021-30795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30795"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-568",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-23T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Apple Safari. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Safari",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212606 du 19 juillet 2021",
"url": "https://support.apple.com/en-us/HT212606"
}
]
}
CERTFR-2021-AVI-562
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Catalina versions ant\u00e9rieures \u00e0 2021-004",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 14.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Big Sur versions ant\u00e9rieures \u00e0 11.5",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Mojave versions ant\u00e9rieures \u00e0 2021-005",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30784"
},
{
"name": "CVE-2021-30799",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30799"
},
{
"name": "CVE-2021-30672",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30672"
},
{
"name": "CVE-2021-30765",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30765"
},
{
"name": "CVE-2021-30731",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30731"
},
{
"name": "CVE-2021-30792",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30792"
},
{
"name": "CVE-2018-25014",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25014"
},
{
"name": "CVE-2021-30787",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30787"
},
{
"name": "CVE-2021-30782",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30782"
},
{
"name": "CVE-2021-30800",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30800"
},
{
"name": "CVE-2021-30733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30733"
},
{
"name": "CVE-2021-30766",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30766"
},
{
"name": "CVE-2018-25011",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25011"
},
{
"name": "CVE-2021-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30774"
},
{
"name": "CVE-2021-30778",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30778"
},
{
"name": "CVE-2021-30763",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30763"
},
{
"name": "CVE-2021-30776",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30776"
},
{
"name": "CVE-2021-30677",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30677"
},
{
"name": "CVE-2021-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30775"
},
{
"name": "CVE-2021-30789",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30789"
},
{
"name": "CVE-2021-30759",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30759"
},
{
"name": "CVE-2018-25010",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25010"
},
{
"name": "CVE-2021-30748",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30748"
},
{
"name": "CVE-2021-30796",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30796"
},
{
"name": "CVE-2021-30791",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30791"
},
{
"name": "CVE-2021-30770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30770"
},
{
"name": "CVE-2021-30797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30797"
},
{
"name": "CVE-2021-30788",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30788"
},
{
"name": "CVE-2021-30790",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30790"
},
{
"name": "CVE-2021-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30703"
},
{
"name": "CVE-2021-30772",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30772"
},
{
"name": "CVE-2021-30781",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30781"
},
{
"name": "CVE-2021-30773",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30773"
},
{
"name": "CVE-2020-36328",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36328"
},
{
"name": "CVE-2021-30758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30758"
},
{
"name": "CVE-2021-30803",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30803"
},
{
"name": "CVE-2021-30798",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30798"
},
{
"name": "CVE-2021-30769",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30769"
},
{
"name": "CVE-2021-30760",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30760"
},
{
"name": "CVE-2021-30785",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30785"
},
{
"name": "CVE-2021-30780",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30780"
},
{
"name": "CVE-2020-36330",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36330"
},
{
"name": "CVE-2021-30793",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30793"
},
{
"name": "CVE-2021-30779",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30779"
},
{
"name": "CVE-2021-30805",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30805"
},
{
"name": "CVE-2021-30786",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30786"
},
{
"name": "CVE-2020-36329",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36329"
},
{
"name": "CVE-2021-30804",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30804"
},
{
"name": "CVE-2021-30795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30795"
},
{
"name": "CVE-2021-30777",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30777"
},
{
"name": "CVE-2020-36331",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36331"
},
{
"name": "CVE-2021-30768",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30768"
},
{
"name": "CVE-2021-30802",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30802"
},
{
"name": "CVE-2021-3518",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3518"
},
{
"name": "CVE-2021-30783",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30783"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-562",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212601 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212600 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212600"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212602 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212603 du 21 juillet 2021",
"url": "https://support.apple.com/en-us/HT212603"
}
]
}
CERTFR-2021-AVI-568
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Apple Safari. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneReferences
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Safari versions ant\u00e9rieures \u00e0 14.1.2",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30797"
},
{
"name": "CVE-2021-30758",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30758"
},
{
"name": "CVE-2021-30795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30795"
}
],
"links": [],
"reference": "CERTFR-2021-AVI-568",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-07-23T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Apple Safari. Elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apple Safari",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212606 du 19 juillet 2021",
"url": "https://support.apple.com/en-us/HT212606"
}
]
}
alsa-2021:4381
Vulnerability from osv_almalinux
Published
2021-11-09 09:15
Modified
2021-11-12 10:21
Summary
Moderate: GNOME security, bug fix, and enhancement update
Details
GNOME is the default desktop environment of AlmaLinux.
The following packages have been upgraded to a later upstream version: gdm (40.0), webkit2gtk3 (2.32.3). (BZ#1909300)
Security Fix(es):
-
webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution (CVE-2020-13558)
-
LibRaw: Stack buffer overflow in LibRaw::identify_process_dng_fields() in identify.cpp (CVE-2020-24870)
-
webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2020-27918)
-
webkitgtk: IFrame sandboxing policy violation (CVE-2021-1765)
-
webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2021-1788)
-
webkitgtk: Type confusion issue leading to arbitrary code execution (CVE-2021-1789)
-
webkitgtk: Access to restricted ports on arbitrary servers via port redirection (CVE-2021-1799)
-
webkitgtk: IFrame sandboxing policy violation (CVE-2021-1801)
-
webkitgtk: Memory corruption issue leading to arbitrary code execution (CVE-2021-1844)
-
webkitgtk: Logic issue leading to arbitrary code execution (CVE-2021-1870)
-
webkitgtk: Logic issue leading to arbitrary code execution (CVE-2021-1871)
-
webkitgtk: Use-after-free in ImageLoader dispatchPendingErrorEvent leading to information leak and possibly code execution (CVE-2021-21775)
-
webkitgtk: Use-after-free in WebCore::GraphicsContext leading to information leak and possibly code execution (CVE-2021-21779)
-
webkitgtk: Use-after-free in fireEventListeners leading to arbitrary code execution (CVE-2021-21806)
-
webkitgtk: Integer overflow leading to arbitrary code execution (CVE-2021-30663)
-
webkitgtk: Memory corruption leading to arbitrary code execution (CVE-2021-30665)
-
webkitgtk: Logic issue leading to leak of sensitive user information (CVE-2021-30682)
-
webkitgtk: Logic issue leading to universal cross site scripting attack (CVE-2021-30689)
-
webkitgtk: Logic issue allowing access to restricted ports on arbitrary servers (CVE-2021-30720)
-
webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30734)
-
webkitgtk: Cross-origin issue with iframe elements leading to universal cross site scripting attack (CVE-2021-30744)
-
webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30749)
-
webkitgtk: Type confusion leading to arbitrary code execution (CVE-2021-30758)
-
webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2021-30795)
-
webkitgtk: Insufficient checks leading to arbitrary code execution (CVE-2021-30797)
-
webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30799)
-
webkitgtk: User may be unable to fully delete browsing history (CVE-2020-29623)
-
gnome-autoar: Directory traversal via directory symbolic links pointing outside of the destination directory (CVE-2020-36241)
-
gnome-autoar: Directory traversal via directory symbolic links pointing outside of the destination directory (incomplete CVE-2020-36241 fix) (CVE-2021-28650)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References
{
"affected": [
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "LibRaw"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.19.5-3.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "LibRaw-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.19.5-3.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "accountsservice"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.6.55-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "accountsservice-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.6.55-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "accountsservice-libs"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.6.55-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gdm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1:40.0-15.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-autoar"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "0.2.3-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-calculator"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.2-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-classic-session"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-control-center"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.2-28.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-control-center-filesystem"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.2-28.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-online-accounts"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.2-3.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-online-accounts-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.2-3.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-session"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.1-13.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-session-kiosk-session"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.1-13.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-session-wayland-session"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.1-13.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-session-xsession"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.28.1-13.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-settings-daemon"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.0-16.el8.alma"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.2-40.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-apps-menu"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-auto-move-windows"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-common"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-dash-to-dock"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-desktop-icons"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-disable-screenshield"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-drive-menu"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-gesture-inhibitor"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-horizontal-workspaces"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-launch-new-instance"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-native-window-placement"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-no-hot-corner"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-panel-favorites"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-places-menu"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-screenshot-window-sizer"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-systemMonitor"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-top-icons"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-updates-dialog"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-user-theme"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-window-grouper"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-window-list"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-windowsNavigator"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-shell-extension-workspace-indicator"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.1-20.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-software"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.36.1-10.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gnome-software-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.36.1-10.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gsettings-desktop-schemas"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.0-6.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gsettings-desktop-schemas-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.0-6.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gtk-update-icon-cache"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.22.30-8.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gtk3"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.22.30-8.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gtk3-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.22.30-8.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "gtk3-immodule-xim"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.22.30-8.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "mutter"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.2-60.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "mutter-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.32.2-60.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "vino"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "3.22.0-11.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "webkit2gtk3"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.32.3-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "webkit2gtk3-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.32.3-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "webkit2gtk3-jsc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.32.3-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "AlmaLinux:8",
"name": "webkit2gtk3-jsc-devel"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.32.3-2.el8"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"details": "GNOME is the default desktop environment of AlmaLinux.\n\nThe following packages have been upgraded to a later upstream version: gdm (40.0), webkit2gtk3 (2.32.3). (BZ#1909300)\n\nSecurity Fix(es):\n\n* webkitgtk: Use-after-free in AudioSourceProviderGStreamer leading to arbitrary code execution (CVE-2020-13558)\n\n* LibRaw: Stack buffer overflow in LibRaw::identify_process_dng_fields() in identify.cpp (CVE-2020-24870)\n\n* webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2020-27918)\n\n* webkitgtk: IFrame sandboxing policy violation (CVE-2021-1765)\n\n* webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2021-1788)\n\n* webkitgtk: Type confusion issue leading to arbitrary code execution (CVE-2021-1789)\n\n* webkitgtk: Access to restricted ports on arbitrary servers via port redirection (CVE-2021-1799)\n\n* webkitgtk: IFrame sandboxing policy violation (CVE-2021-1801)\n\n* webkitgtk: Memory corruption issue leading to arbitrary code execution (CVE-2021-1844)\n\n* webkitgtk: Logic issue leading to arbitrary code execution (CVE-2021-1870)\n\n* webkitgtk: Logic issue leading to arbitrary code execution (CVE-2021-1871)\n\n* webkitgtk: Use-after-free in ImageLoader dispatchPendingErrorEvent leading to information leak and possibly code execution (CVE-2021-21775)\n\n* webkitgtk: Use-after-free in WebCore::GraphicsContext leading to information leak and possibly code execution (CVE-2021-21779)\n\n* webkitgtk: Use-after-free in fireEventListeners leading to arbitrary code execution (CVE-2021-21806)\n\n* webkitgtk: Integer overflow leading to arbitrary code execution (CVE-2021-30663)\n\n* webkitgtk: Memory corruption leading to arbitrary code execution (CVE-2021-30665)\n\n* webkitgtk: Logic issue leading to leak of sensitive user information (CVE-2021-30682)\n\n* webkitgtk: Logic issue leading to universal cross site scripting attack (CVE-2021-30689)\n\n* webkitgtk: Logic issue allowing access to restricted ports on arbitrary servers (CVE-2021-30720)\n\n* webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30734)\n\n* webkitgtk: Cross-origin issue with iframe elements leading to universal cross site scripting attack (CVE-2021-30744)\n\n* webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30749)\n\n* webkitgtk: Type confusion leading to arbitrary code execution (CVE-2021-30758)\n\n* webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2021-30795)\n\n* webkitgtk: Insufficient checks leading to arbitrary code execution (CVE-2021-30797)\n\n* webkitgtk: Memory corruptions leading to arbitrary code execution (CVE-2021-30799)\n\n* webkitgtk: User may be unable to fully delete browsing history (CVE-2020-29623)\n\n* gnome-autoar: Directory traversal via directory symbolic links pointing outside of the destination directory (CVE-2020-36241)\n\n* gnome-autoar: Directory traversal via directory symbolic links pointing outside of the destination directory (incomplete CVE-2020-36241 fix) (CVE-2021-28650)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.",
"id": "ALSA-2021:4381",
"modified": "2021-11-12T10:21:01Z",
"published": "2021-11-09T09:15:15Z",
"references": [
{
"type": "ADVISORY",
"url": "https://errata.almalinux.org/8/ALSA-2021-4381.html"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-13558"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-24870"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-27918"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-29623"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2020-36241"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1765"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1788"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1789"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1799"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1801"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1844"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1870"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-1871"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-21775"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-21779"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-21806"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-28650"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30663"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30665"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30682"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30689"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30720"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30734"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30744"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30749"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30758"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30795"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30797"
},
{
"type": "REPORT",
"url": "https://vulners.com/cve/CVE-2021-30799"
}
],
"related": [
"CVE-2020-13558",
"CVE-2020-24870",
"CVE-2020-27918",
"CVE-2021-1765",
"CVE-2021-1788",
"CVE-2021-1789",
"CVE-2021-1799",
"CVE-2021-1801",
"CVE-2021-1844",
"CVE-2021-1870",
"CVE-2021-1871",
"CVE-2021-21775",
"CVE-2021-21779",
"CVE-2021-21806",
"CVE-2021-30663",
"CVE-2021-30665",
"CVE-2021-30682",
"CVE-2021-30689",
"CVE-2021-30720",
"CVE-2021-30734",
"CVE-2021-30744",
"CVE-2021-30749",
"CVE-2021-30758",
"CVE-2021-30795",
"CVE-2021-30797",
"CVE-2021-30799",
"CVE-2020-29623",
"CVE-2020-36241",
"CVE-2020-36241",
"CVE-2021-28650"
],
"summary": "Moderate: GNOME security, bug fix, and enhancement update"
}
BDU:2022-00218
Vulnerability from fstec - Published: 09.07.2021
VLAI Severity ?
Title
Уязвимость модулей отображения веб-страниц WebKitGTK, WPE WebKit, связанная с недостаточной проверкой входных данных, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Description
Уязвимость модулей отображения веб-страниц WebKitGTK, WPE WebKit связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании с помощью вредоносного веб-контента
Severity ?
Vendor
Сообщество свободного программного обеспечения, ООО «РусБИТех-Астра», АО "НППКТ"
Software Name
Debian GNU/Linux, Astra Linux Special Edition (запись в едином реестре российских программ №369), WebKitGTK, WPE WebKit, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913)
Software Version
9 (Debian GNU/Linux), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), 1.7 (Astra Linux Special Edition), до 2.32.3 (WebKitGTK), до 2.32.3 (WPE WebKit), 4.7 (Astra Linux Special Edition), до 2.1 (ОСОН ОСнова Оnyx)
Possible Mitigations
Для WebKitGTK:
использование рекомендаций производителя: https://webkitgtk.org/security/WSA-2021-0004.html
Для ОС Debian:
использование рекомендаций производителя: https://security-tracker.debian.org/tracker/CVE-2021-30797
Для Astra Linux:
использование рекомендаций производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17
использование рекомендаций производителя: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47
Для ОСОН Основа:
Обновление программного обеспечения webkit2gtk до версии 2.32.3-1~deb10u1
Reference
https://bugs.gentoo.org/show_bug.cgi?id=CVE-2021-30797
https://nvd.nist.gov/vuln/detail/CVE-2021-30797
https://security-tracker.debian.org/tracker/CVE-2021-30797
https://webkitgtk.org/security/WSA-2021-0004.html
https://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17
https://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.1/
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\"",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "9 (Debian GNU/Linux), 8 (Debian GNU/Linux), 10 (Debian GNU/Linux), 1.7 (Astra Linux Special Edition), \u0434\u043e 2.32.3 (WebKitGTK), \u0434\u043e 2.32.3 (WPE WebKit), 4.7 (Astra Linux Special Edition), \u0434\u043e 2.1 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0414\u043b\u044f WebKitGTK:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://webkitgtk.org/security/WSA-2021-0004.html\n\n\u0414\u043b\u044f \u041e\u0421 Debian:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://security-tracker.debian.org/tracker/CVE-2021-30797\n\n\u0414\u043b\u044f Astra Linux:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0441\u043d\u043e\u0432\u0430:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f webkit2gtk \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.32.3-1~deb10u1",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.07.2021",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "17.10.2022",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "17.01.2022",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2022-00218",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-30797",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), WebKitGTK, WPE WebKit, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 9 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 8 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u0435\u0439 \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446 WebKitGTK, WPE WebKit, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0438\u0445 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0434\u0443\u043b\u0435\u0439 \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446 WebKitGTK, WPE WebKit \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0438\u0445 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u0432\u0435\u0431-\u043a\u043e\u043d\u0442\u0435\u043d\u0442\u0430",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://bugs.gentoo.org/show_bug.cgi?id=CVE-2021-30797\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-30797\nhttps://security-tracker.debian.org/tracker/CVE-2021-30797\nhttps://webkitgtk.org/security/WSA-2021-0004.html\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2021-1126SE17\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2022-0114SE47\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.1/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,8)"
}
FKIE_CVE-2021-30797
Vulnerability from fkie_nvd - Published: 2021-09-08 14:15 - Updated: 2024-11-21 06:04
Severity ?
Summary
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.
References
| URL | Tags | ||
|---|---|---|---|
| product-security@apple.com | https://support.apple.com/en-us/HT212601 | Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/HT212602 | Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/HT212604 | Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/HT212605 | Vendor Advisory | |
| product-security@apple.com | https://support.apple.com/en-us/HT212606 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/en-us/HT212601 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/en-us/HT212602 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/en-us/HT212604 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/en-us/HT212605 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/en-us/HT212606 | Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"matchCriteriaId": "85676273-4DB8-403C-A7D5-27F6213A08C0",
"versionEndExcluding": "14.1.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3B5771AF-0A7B-4CB9-85C1-AE624498D080",
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D3AF02B7-BF1F-483A-BA47-9B5B92AF1D29",
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "91CD5E8A-20E3-4193-BD1F-99FB1147081C",
"versionEndExcluding": "11.5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FC9C8462-9BFF-4CC8-AB3A-0AAA8B20A81F",
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "94EF9266-E8BC-4F20-B724-A3151A06192C",
"versionEndExcluding": "7.6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution."
},
{
"lang": "es",
"value": "Este problema se abord\u00f3 con una comprobaci\u00f3n mejorada. Este problema se corrigi\u00f3 en iOS versi\u00f3n 14.7, Safari versi\u00f3n 14.1.2, macOS Big Sur versi\u00f3n 11.5, watchOS versi\u00f3n 7.6, tvOS versi\u00f3n 14.7. El procesamiento de contenido web dise\u00f1ado maliciosamente puede conllevar a una ejecuci\u00f3n de c\u00f3digo"
}
],
"id": "CVE-2021-30797",
"lastModified": "2024-11-21T06:04:44.420",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-09-08T14:15:11.703",
"references": [
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212601"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212602"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212604"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212605"
},
{
"source": "product-security@apple.com",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212606"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212601"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212602"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212604"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212605"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212606"
}
],
"sourceIdentifier": "product-security@apple.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-Q239-WM45-8MWC
Vulnerability from github – Published: 2022-05-24 19:13 – Updated: 2022-05-24 19:13
VLAI?
Details
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.
{
"affected": [],
"aliases": [
"CVE-2021-30797"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-09-08T14:15:00Z",
"severity": "HIGH"
},
"details": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.",
"id": "GHSA-q239-wm45-8mwc",
"modified": "2022-05-24T19:13:41Z",
"published": "2022-05-24T19:13:41Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-30797"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT212604"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT212605"
},
{
"type": "WEB",
"url": "https://support.apple.com/en-us/HT212606"
}
],
"schema_version": "1.4.0",
"severity": []
}
GSD-2021-30797
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-30797",
"description": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.",
"id": "GSD-2021-30797",
"references": [
"https://www.suse.com/security/cve/CVE-2021-30797.html",
"https://www.debian.org/security/2021/dsa-4945",
"https://access.redhat.com/errata/RHSA-2021:4381",
"https://ubuntu.com/security/CVE-2021-30797",
"https://advisories.mageia.org/CVE-2021-30797.html",
"https://security.archlinux.org/CVE-2021-30797",
"https://linux.oracle.com/cve/CVE-2021-30797.html",
"https://packetstormsecurity.com/files/cve/CVE-2021-30797"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-30797"
],
"details": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.",
"id": "GSD-2021-30797",
"modified": "2023-12-13T01:23:30.629092Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2021-30797",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "iOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.7"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "11.5"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.7"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "7.6"
}
]
}
},
{
"product_name": "macOS",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "14.1"
}
]
}
}
]
},
"vendor_name": "Apple"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Processing maliciously crafted web content may lead to code execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/en-us/HT212601",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212601"
},
{
"name": "https://support.apple.com/en-us/HT212602",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212602"
},
{
"name": "https://support.apple.com/en-us/HT212605",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212605"
},
{
"name": "https://support.apple.com/en-us/HT212604",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212604"
},
{
"name": "https://support.apple.com/en-us/HT212606",
"refsource": "MISC",
"url": "https://support.apple.com/en-us/HT212606"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.1.2",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "11.5",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "14.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:apple:watchos:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "7.6",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "product-security@apple.com",
"ID": "CVE-2021-30797"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.apple.com/en-us/HT212606",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212606"
},
{
"name": "https://support.apple.com/en-us/HT212604",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212604"
},
{
"name": "https://support.apple.com/en-us/HT212605",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212605"
},
{
"name": "https://support.apple.com/en-us/HT212602",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212602"
},
{
"name": "https://support.apple.com/en-us/HT212601",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://support.apple.com/en-us/HT212601"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2021-09-14T20:48Z",
"publishedDate": "2021-09-08T14:15Z"
}
}
}
OPENSUSE-SU-2021:1101-1
Vulnerability from csaf_opensuse - Published: 2021-08-09 21:19 - Updated: 2021-08-09 21:19Summary
Security update for webkit2gtk3
Severity
Important
Notes
Title of the patch: Security update for webkit2gtk3
Description of the patch: This update for webkit2gtk3 fixes the following issues:
- Update to version 2.32.3:
- CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697)
- CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697)
- CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697)
- CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697)
- CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697)
- CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697)
- CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
- CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697)
- CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
- CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697)
- CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697)
- CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697)
- CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patchnames: openSUSE-2021-1101
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.4 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
45 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1188697 | self |
| https://www.suse.com/security/cve/CVE-2021-21775/ | self |
| https://www.suse.com/security/cve/CVE-2021-21779/ | self |
| https://www.suse.com/security/cve/CVE-2021-30663/ | self |
| https://www.suse.com/security/cve/CVE-2021-30665/ | self |
| https://www.suse.com/security/cve/CVE-2021-30689/ | self |
| https://www.suse.com/security/cve/CVE-2021-30720/ | self |
| https://www.suse.com/security/cve/CVE-2021-30734/ | self |
| https://www.suse.com/security/cve/CVE-2021-30744/ | self |
| https://www.suse.com/security/cve/CVE-2021-30749/ | self |
| https://www.suse.com/security/cve/CVE-2021-30758/ | self |
| https://www.suse.com/security/cve/CVE-2021-30795/ | self |
| https://www.suse.com/security/cve/CVE-2021-30797/ | self |
| https://www.suse.com/security/cve/CVE-2021-30799/ | self |
| https://www.suse.com/security/cve/CVE-2021-21775 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-21779 | external |
| https://bugzilla.suse.com/1188293 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30663 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30665 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30689 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30720 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30734 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30744 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30749 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30758 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30795 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30797 | external |
| https://bugzilla.suse.com/1188697 | external |
| https://www.suse.com/security/cve/CVE-2021-30799 | external |
| https://bugzilla.suse.com/1188697 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for webkit2gtk3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for webkit2gtk3 fixes the following issues:\n\n- Update to version 2.32.3:\n- CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697)\n- CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697)\n- CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697)\n- CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697)\n- CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697)\n- CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697)\n- CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)\n- CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697)\n- CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)\n- CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697)\n- CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697)\n- CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697)\n- CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697)\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2021-1101",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_1101-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2021:1101-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DYJ44GRLS3QYOXTONYQG6SHUD22SUDIB/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2021:1101-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DYJ44GRLS3QYOXTONYQG6SHUD22SUDIB/"
},
{
"category": "self",
"summary": "SUSE Bug 1188697",
"url": "https://bugzilla.suse.com/1188697"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21775 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21779 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30663 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30663/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30665 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30689 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30720 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30734 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30744 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30749 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30758 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30795 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30795/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30797 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30797/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30799 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30799/"
}
],
"title": "Security update for webkit2gtk3",
"tracking": {
"current_release_date": "2021-08-09T21:19:52Z",
"generator": {
"date": "2021-08-09T21:19:52Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2021:1101-1",
"initial_release_date": "2021-08-09T21:19:52Z",
"revision_history": [
{
"date": "2021-08-09T21:19:52Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"product_id": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"product_id": "webkit-jsc-4-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"product_id": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"product_id": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"product": {
"name": "libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"product_id": "libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"product_id": "webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"product_id": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64",
"product_id": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch"
},
"product_reference": "libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-21775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21775"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked into visiting a malicious webpage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21775",
"url": "https://www.suse.com/security/cve/CVE-2021-21775"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-21775",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-21775"
},
{
"cve": "CVE-2021-21779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21779"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability exists in the way Webkit\u0027s GraphicsContext handles certain events in WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21779",
"url": "https://www.suse.com/security/cve/CVE-2021-21779"
},
{
"category": "external",
"summary": "SUSE Bug 1188293 for CVE-2021-21779",
"url": "https://bugzilla.suse.com/1188293"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-21779",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-21779"
},
{
"cve": "CVE-2021-30663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30663"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow was addressed with improved input validation. This issue is fixed in iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, Safari 14.1.1, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30663",
"url": "https://www.suse.com/security/cve/CVE-2021-30663"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30663",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30663"
},
{
"cve": "CVE-2021-30665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30665"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 7.4.1, iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30665",
"url": "https://www.suse.com/security/cve/CVE-2021-30665"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30665",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30665"
},
{
"cve": "CVE-2021-30689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30689"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30689",
"url": "https://www.suse.com/security/cve/CVE-2021-30689"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30689",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30689"
},
{
"cve": "CVE-2021-30720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30720"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. A malicious website may be able to access restricted ports on arbitrary servers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30720",
"url": "https://www.suse.com/security/cve/CVE-2021-30720"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30720",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30720"
},
{
"cve": "CVE-2021-30734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30734"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30734",
"url": "https://www.suse.com/security/cve/CVE-2021-30734"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30734",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30734"
},
{
"cve": "CVE-2021-30744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30744"
}
],
"notes": [
{
"category": "general",
"text": "Description: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30744",
"url": "https://www.suse.com/security/cve/CVE-2021-30744"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30744",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30744"
},
{
"cve": "CVE-2021-30749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30749"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30749",
"url": "https://www.suse.com/security/cve/CVE-2021-30749"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30749",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30749"
},
{
"cve": "CVE-2021-30758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30758"
}
],
"notes": [
{
"category": "general",
"text": "A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30758",
"url": "https://www.suse.com/security/cve/CVE-2021-30758"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30758",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30758"
},
{
"cve": "CVE-2021-30795",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30795"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30795",
"url": "https://www.suse.com/security/cve/CVE-2021-30795"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30795",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30795"
},
{
"cve": "CVE-2021-30797",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30797"
}
],
"notes": [
{
"category": "general",
"text": "This issue was addressed with improved checks. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30797",
"url": "https://www.suse.com/security/cve/CVE-2021-30797"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30797",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30797"
},
{
"cve": "CVE-2021-30799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30799"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30799",
"url": "https://www.suse.com/security/cve/CVE-2021-30799"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30799",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libjavascriptcoregtk-4_0-18-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk-4_0-37-32bit-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:libwebkit2gtk3-lang-2.32.3-lp152.2.16.1.noarch",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-JavaScriptCore-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:typelib-1_0-WebKit2WebExtension-4_0-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit-jsc-4-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk-4_0-injected-bundles-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-devel-2.32.3-lp152.2.16.1.x86_64",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.i586",
"openSUSE Leap 15.2:webkit2gtk3-minibrowser-2.32.3-lp152.2.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-09T21:19:52Z",
"details": "important"
}
],
"title": "CVE-2021-30799"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…