Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-6251 (GCVE-0-2019-6251)
Vulnerability from cvelistv5 – Published: 2019-01-14 07:00 – Updated: 2024-08-04 20:16
VLAI?
EPSS
Summary
WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:16:24.679Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://gitlab.gnome.org/GNOME/epiphany/issues/532"
},
{
"name": "20190411 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Apr/21"
},
{
"name": "[oss-security] 20190410 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/11/1"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html"
},
{
"name": "FEDORA-2019-d9a15be3ba",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/"
},
{
"name": "FEDORA-2019-b3ad0a302b",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/"
},
{
"name": "USN-3948-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3948-1/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://bugs.webkit.org/show_bug.cgi?id=194208"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://trac.webkit.org/changeset/243434"
},
{
"name": "FEDORA-2019-432b3dff25",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/"
},
{
"name": "FEDORA-2019-77433fc7f3",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/"
},
{
"name": "FEDORA-2019-74f7603660",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/"
},
{
"name": "openSUSE-SU-2019:1374",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html"
},
{
"name": "openSUSE-SU-2019:1391",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html"
},
{
"name": "GLSA-201909-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201909-05"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2019-01-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-09-06T17:06:11",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://gitlab.gnome.org/GNOME/epiphany/issues/532"
},
{
"name": "20190411 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Apr/21"
},
{
"name": "[oss-security] 20190410 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/11/1"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html"
},
{
"name": "FEDORA-2019-d9a15be3ba",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/"
},
{
"name": "FEDORA-2019-b3ad0a302b",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/"
},
{
"name": "USN-3948-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3948-1/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://bugs.webkit.org/show_bug.cgi?id=194208"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://trac.webkit.org/changeset/243434"
},
{
"name": "FEDORA-2019-432b3dff25",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/"
},
{
"name": "FEDORA-2019-77433fc7f3",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/"
},
{
"name": "FEDORA-2019-74f7603660",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/"
},
{
"name": "openSUSE-SU-2019:1374",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html"
},
{
"name": "openSUSE-SU-2019:1391",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html"
},
{
"name": "GLSA-201909-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201909-05"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-6251",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://gitlab.gnome.org/GNOME/epiphany/issues/532",
"refsource": "MISC",
"url": "https://gitlab.gnome.org/GNOME/epiphany/issues/532"
},
{
"name": "20190411 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Apr/21"
},
{
"name": "[oss-security] 20190410 WebKitGTK and WPE WebKit Security Advisory WSA-2019-0002",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2019/04/11/1"
},
{
"name": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html",
"refsource": "MISC",
"url": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html"
},
{
"name": "FEDORA-2019-d9a15be3ba",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/"
},
{
"name": "FEDORA-2019-b3ad0a302b",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/"
},
{
"name": "USN-3948-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3948-1/"
},
{
"name": "https://bugs.webkit.org/show_bug.cgi?id=194208",
"refsource": "MISC",
"url": "https://bugs.webkit.org/show_bug.cgi?id=194208"
},
{
"name": "https://trac.webkit.org/changeset/243434",
"refsource": "MISC",
"url": "https://trac.webkit.org/changeset/243434"
},
{
"name": "FEDORA-2019-432b3dff25",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/"
},
{
"name": "FEDORA-2019-77433fc7f3",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/"
},
{
"name": "FEDORA-2019-74f7603660",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/"
},
{
"name": "openSUSE-SU-2019:1374",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html"
},
{
"name": "openSUSE-SU-2019:1391",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html"
},
{
"name": "GLSA-201909-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201909-05"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-6251",
"datePublished": "2019-01-14T07:00:00",
"dateReserved": "2019-01-13T00:00:00",
"dateUpdated": "2024-08-04T20:16:24.679Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:gnome:epiphany:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.31.4\", \"matchCriteriaId\": \"F62B1562-9E8B-4E4D-811D-8D5064595923\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.24.1\", \"matchCriteriaId\": \"08565239-2C80-4C9F-A270-6076E455DD91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2.24.1\", \"matchCriteriaId\": \"46E10007-E315-4E7B-99DC-44F7E4C8523C\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D100F7CE-FC64-4CC6-852A-6136D72DA419\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1E78106-58E6-4D59-990F-75DA575BFAD9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.\"}, {\"lang\": \"es\", \"value\": \"WebKitGTK y WPE WebKit versiones anteriores a 2.24.1 permite la suplantaci\\u00f3n de la barra de direcciones en determinadas redirecciones de JavaScript. Un atacante puede hacer que el contenido web malicioso se muestre como si se tratara de una URL de confianza. Esto es similar a la edici\\u00f3n CVE-2018-8383 en Microsoft Edge.\"}]",
"id": "CVE-2019-6251",
"lastModified": "2024-11-21T04:46:18.887",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.2}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:N\", \"baseScore\": 5.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2019-01-14T08:29:00.223",
"references": "[{\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/04/11/1\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://bugs.webkit.org/show_bug.cgi?id=194208\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://gitlab.gnome.org/GNOME/epiphany/issues/532\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://seclists.org/bugtraq/2019/Apr/21\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201909-05\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://trac.webkit.org/changeset/243434\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3948-1/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2019/04/11/1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://bugs.webkit.org/show_bug.cgi?id=194208\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://gitlab.gnome.org/GNOME/epiphany/issues/532\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://seclists.org/bugtraq/2019/Apr/21\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/201909-05\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://trac.webkit.org/changeset/243434\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3948-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-6251\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2019-01-14T08:29:00.223\",\"lastModified\":\"2024-11-21T04:46:18.887\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.\"},{\"lang\":\"es\",\"value\":\"WebKitGTK y WPE WebKit versiones anteriores a 2.24.1 permite la suplantaci\u00f3n de la barra de direcciones en determinadas redirecciones de JavaScript. Un atacante puede hacer que el contenido web malicioso se muestre como si se tratara de una URL de confianza. Esto es similar a la edici\u00f3n CVE-2018-8383 en Microsoft Edge.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":5.2}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:N\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnome:epiphany:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.31.4\",\"matchCriteriaId\":\"F62B1562-9E8B-4E4D-811D-8D5064595923\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.24.1\",\"matchCriteriaId\":\"08565239-2C80-4C9F-A270-6076E455DD91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.24.1\",\"matchCriteriaId\":\"46E10007-E315-4E7B-99DC-44F7E4C8523C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/04/11/1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugs.webkit.org/show_bug.cgi?id=194208\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://gitlab.gnome.org/GNOME/epiphany/issues/532\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/21\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201909-05\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://trac.webkit.org/changeset/243434\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3948-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/04/11/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://bugs.webkit.org/show_bug.cgi?id=194208\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://gitlab.gnome.org/GNOME/epiphany/issues/532\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Apr/21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/201909-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://trac.webkit.org/changeset/243434\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3948-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
OPENSUSE-SU-2019:1374-1
Vulnerability from csaf_opensuse - Published: 2019-05-10 11:29 - Updated: 2019-05-10 11:29Summary
Security update for webkit2gtk3
Notes
Title of the patch
Security update for webkit2gtk3
Description of the patch
This update for webkit2gtk3 to version 2.24.1 fixes the following issues:
Security issues fixed:
- CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506,
CVE-2019-8515, CVE-2019-8518, CVE-2019-8523, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536,
CVE-2019-8544, CVE-2019-8551, CVE-2019-8558, CVE-2019-8559, CVE-2019-8563, CVE-2019-11070
(bsc#1132256).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-1374
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for webkit2gtk3",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for webkit2gtk3 to version 2.24.1 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506,\n CVE-2019-8515, CVE-2019-8518, CVE-2019-8523, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536,\n CVE-2019-8544, CVE-2019-8551, CVE-2019-8558, CVE-2019-8559, CVE-2019-8563, CVE-2019-11070\n (bsc#1132256).\n \nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-1374",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_1374-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:1374-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CGMQTO45E47X7O5HB3O7ZWDQLHRQ7G2Q/#CGMQTO45E47X7O5HB3O7ZWDQLHRQ7G2Q"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:1374-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CGMQTO45E47X7O5HB3O7ZWDQLHRQ7G2Q/#CGMQTO45E47X7O5HB3O7ZWDQLHRQ7G2Q"
},
{
"category": "self",
"summary": "SUSE Bug 1132256",
"url": "https://bugzilla.suse.com/1132256"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11070 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6201 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6251 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-7285 page",
"url": "https://www.suse.com/security/cve/CVE-2019-7285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-7292 page",
"url": "https://www.suse.com/security/cve/CVE-2019-7292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8503 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8503/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8506 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8515 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8515/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8518 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8523 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8523/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8524 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8524/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8535 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8535/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8536 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8536/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8544 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8544/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8551 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8558 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8559 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8559/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8563 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8563/"
}
],
"title": "Security update for webkit2gtk3",
"tracking": {
"current_release_date": "2019-05-10T11:29:13Z",
"generator": {
"date": "2019-05-10T11:29:13Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:1374-1",
"initial_release_date": "2019-05-10T11:29:13Z",
"revision_history": [
{
"date": "2019-05-10T11:29:13Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"product_id": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"product_id": "webkit-jsc-4-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"product_id": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"product_id": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"product": {
"name": "libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"product_id": "libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"product_id": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"product_id": "webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"product_id": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"product_id": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64",
"product": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64",
"product_id": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch"
},
"product_reference": "libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
},
"product_reference": "webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-11070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11070"
}
],
"notes": [
{
"category": "general",
"text": "WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11070",
"url": "https://www.suse.com/security/cve/CVE-2019-11070"
},
{
"category": "external",
"summary": "SUSE Bug 1132196 for CVE-2019-11070",
"url": "https://bugzilla.suse.com/1132196"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-11070",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-11070"
},
{
"cve": "CVE-2019-6201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6201"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6201",
"url": "https://www.suse.com/security/cve/CVE-2019-6201"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-6201",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-6201"
},
{
"cve": "CVE-2019-6251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6251"
}
],
"notes": [
{
"category": "general",
"text": "WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6251",
"url": "https://www.suse.com/security/cve/CVE-2019-6251"
},
{
"category": "external",
"summary": "SUSE Bug 1121894 for CVE-2019-6251",
"url": "https://bugzilla.suse.com/1121894"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-6251",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-6251"
},
{
"cve": "CVE-2019-7285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-7285"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-7285",
"url": "https://www.suse.com/security/cve/CVE-2019-7285"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-7285",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-7285"
},
{
"cve": "CVE-2019-7292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-7292"
}
],
"notes": [
{
"category": "general",
"text": "A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may result in the disclosure of process memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-7292",
"url": "https://www.suse.com/security/cve/CVE-2019-7292"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-7292",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-7292"
},
{
"cve": "CVE-2019-8503",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8503"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8503",
"url": "https://www.suse.com/security/cve/CVE-2019-8503"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8503",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8503"
},
{
"cve": "CVE-2019-8506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8506"
}
],
"notes": [
{
"category": "general",
"text": "A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8506",
"url": "https://www.suse.com/security/cve/CVE-2019-8506"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8506",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "critical"
}
],
"title": "CVE-2019-8506"
},
{
"cve": "CVE-2019-8515",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8515"
}
],
"notes": [
{
"category": "general",
"text": "A cross-origin issue existed with the fetch API. This was addressed with improved input validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may disclose sensitive user information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8515",
"url": "https://www.suse.com/security/cve/CVE-2019-8515"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8515",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8515"
},
{
"cve": "CVE-2019-8518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8518"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8518",
"url": "https://www.suse.com/security/cve/CVE-2019-8518"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8518",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "moderate"
}
],
"title": "CVE-2019-8518"
},
{
"cve": "CVE-2019-8523",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8523"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8523",
"url": "https://www.suse.com/security/cve/CVE-2019-8523"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8523",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8523"
},
{
"cve": "CVE-2019-8524",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8524"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8524",
"url": "https://www.suse.com/security/cve/CVE-2019-8524"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8524",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8524"
},
{
"cve": "CVE-2019-8535",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8535"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8535",
"url": "https://www.suse.com/security/cve/CVE-2019-8535"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8535",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8535"
},
{
"cve": "CVE-2019-8536",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8536"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8536",
"url": "https://www.suse.com/security/cve/CVE-2019-8536"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8536",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8536"
},
{
"cve": "CVE-2019-8544",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8544"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8544",
"url": "https://www.suse.com/security/cve/CVE-2019-8544"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8544",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8544"
},
{
"cve": "CVE-2019-8551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8551"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8551",
"url": "https://www.suse.com/security/cve/CVE-2019-8551"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8551",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8551"
},
{
"cve": "CVE-2019-8558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8558"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8558",
"url": "https://www.suse.com/security/cve/CVE-2019-8558"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8558",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8558"
},
{
"cve": "CVE-2019-8559",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8559"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8559",
"url": "https://www.suse.com/security/cve/CVE-2019-8559"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8559",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8559"
},
{
"cve": "CVE-2019-8563",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8563"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8563",
"url": "https://www.suse.com/security/cve/CVE-2019-8563"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8563",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.1-lp150.2.19.1.noarch",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit-jsc-4-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-devel-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.1-lp150.2.19.1.x86_64",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.i586",
"openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.1-lp150.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-05-10T11:29:13Z",
"details": "important"
}
],
"title": "CVE-2019-8563"
}
]
}
OPENSUSE-SU-2024:11506-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libjavascriptcoregtk-4_0-18-2.32.4-1.1 on GA media
Notes
Title of the patch
libjavascriptcoregtk-4_0-18-2.32.4-1.1 on GA media
Description of the patch
These are all security issues fixed in the libjavascriptcoregtk-4_0-18-2.32.4-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11506
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libjavascriptcoregtk-4_0-18-2.32.4-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libjavascriptcoregtk-4_0-18-2.32.4-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11506",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11506-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4692 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4743 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7589 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7598 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7641 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7654 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7654/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7656 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7656/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-1000121 page",
"url": "https://www.suse.com/security/cve/CVE-2017-1000121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13798 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13803 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13803/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13866 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13884 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2350 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2365 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2371 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2371/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2373 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2373/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2496 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2496/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2510 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2510/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-2538 page",
"url": "https://www.suse.com/security/cve/CVE-2017-2538/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5753 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7006 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7019 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7020 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7030 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7030/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7039 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7043 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7046 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7046/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7052 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7056 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7056/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7081 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7081/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7089 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7089/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7093 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7093/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7098 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7098/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7104 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7104/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7117 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7156 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7156/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7157 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7157/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7161 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-11646 page",
"url": "https://www.suse.com/security/cve/CVE-2018-11646/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-12911 page",
"url": "https://www.suse.com/security/cve/CVE-2018-12911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4088 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4101 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4117 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4117/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4120 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4120/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4127 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4133 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4133/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4162 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4190 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4191 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4191/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4200 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4200/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4204 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4204/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4207 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4212 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4222 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4261 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4264 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4270 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4270/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4284 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4306 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4315 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4319 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4345 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4359 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4372 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4375 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4382 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4382/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4437 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4437/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4441 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4441/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-4443 page",
"url": "https://www.suse.com/security/cve/CVE-2018-4443/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6212 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6216 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6216/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6229 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6251 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-7285 page",
"url": "https://www.suse.com/security/cve/CVE-2019-7285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8375 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8518 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8524 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8524/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8551 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8551/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8595 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8625 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8644 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8666 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8669 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8671 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8671/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8681 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8681/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8684 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8684/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8686 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8719 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8719/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8726 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8726/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8766 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8768 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8768/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8771 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8783 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8812 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8816 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8821 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8835 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10018 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11793 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11793/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13558 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13584 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13584/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13753 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-27918 page",
"url": "https://www.suse.com/security/cve/CVE-2020-27918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3862 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3867 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3895 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3899 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-3902 page",
"url": "https://www.suse.com/security/cve/CVE-2020-3902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-9802 page",
"url": "https://www.suse.com/security/cve/CVE-2020-9802/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-9806 page",
"url": "https://www.suse.com/security/cve/CVE-2020-9806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-9862 page",
"url": "https://www.suse.com/security/cve/CVE-2020-9862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-9895 page",
"url": "https://www.suse.com/security/cve/CVE-2020-9895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-9947 page",
"url": "https://www.suse.com/security/cve/CVE-2020-9947/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-1788 page",
"url": "https://www.suse.com/security/cve/CVE-2021-1788/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-1789 page",
"url": "https://www.suse.com/security/cve/CVE-2021-1789/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-1817 page",
"url": "https://www.suse.com/security/cve/CVE-2021-1817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21775 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21775/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21806 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30661 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30661/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30665 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30665/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30666 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30666/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30682 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30682/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30744 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30758 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30799 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30799/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30858 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30858/"
}
],
"title": "libjavascriptcoregtk-4_0-18-2.32.4-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11506-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"product_id": "libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"product": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"product_id": "libwebkit2gtk3-lang-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.4-1.1.aarch64",
"product": {
"name": "webkit-jsc-4-2.32.4-1.1.aarch64",
"product_id": "webkit-jsc-4-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.4-1.1.aarch64",
"product": {
"name": "webkit2gtk3-devel-2.32.4-1.1.aarch64",
"product_id": "webkit2gtk3-devel-2.32.4-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"product_id": "webkit2gtk3-minibrowser-2.32.4-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"product_id": "libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"product": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"product_id": "libwebkit2gtk3-lang-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.4-1.1.ppc64le",
"product": {
"name": "webkit-jsc-4-2.32.4-1.1.ppc64le",
"product_id": "webkit-jsc-4-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"product": {
"name": "webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"product_id": "webkit2gtk3-devel-2.32.4-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"product_id": "webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"product_id": "libwebkit2gtk-4_0-37-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"product": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"product_id": "libwebkit2gtk3-lang-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.4-1.1.s390x",
"product": {
"name": "webkit-jsc-4-2.32.4-1.1.s390x",
"product_id": "webkit-jsc-4-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.4-1.1.s390x",
"product": {
"name": "webkit2gtk3-devel-2.32.4-1.1.s390x",
"product_id": "webkit2gtk3-devel-2.32.4-1.1.s390x"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"product_id": "webkit2gtk3-minibrowser-2.32.4-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"product": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"product_id": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"product": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"product_id": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"product": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"product_id": "libwebkit2gtk3-lang-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"product": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"product_id": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"product_id": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"product": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"product_id": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit-jsc-4-2.32.4-1.1.x86_64",
"product": {
"name": "webkit-jsc-4-2.32.4-1.1.x86_64",
"product_id": "webkit-jsc-4-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"product": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"product_id": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-devel-2.32.4-1.1.x86_64",
"product": {
"name": "webkit2gtk3-devel-2.32.4-1.1.x86_64",
"product_id": "webkit2gtk3-devel-2.32.4-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.x86_64",
"product": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.x86_64",
"product_id": "webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64"
},
"product_reference": "libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64"
},
"product_reference": "libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64"
},
"product_reference": "libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le"
},
"product_reference": "libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x"
},
"product_reference": "libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libwebkit2gtk3-lang-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64"
},
"product_reference": "libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64"
},
"product_reference": "typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64"
},
"product_reference": "typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64"
},
"product_reference": "webkit-jsc-4-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le"
},
"product_reference": "webkit-jsc-4-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x"
},
"product_reference": "webkit-jsc-4-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit-jsc-4-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64"
},
"product_reference": "webkit-jsc-4-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64"
},
"product_reference": "webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64"
},
"product_reference": "webkit2gtk3-devel-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le"
},
"product_reference": "webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x"
},
"product_reference": "webkit2gtk3-devel-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-devel-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64"
},
"product_reference": "webkit2gtk3-devel-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "webkit2gtk3-minibrowser-2.32.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
},
"product_reference": "webkit2gtk3-minibrowser-2.32.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-4692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4692"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4692",
"url": "https://www.suse.com/security/cve/CVE-2016-4692"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-4692",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-4692"
},
{
"cve": "CVE-2016-4743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4743"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4743",
"url": "https://www.suse.com/security/cve/CVE-2016-4743"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-4743",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-4743"
},
{
"cve": "CVE-2016-7589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7589"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. watchOS before 3.1.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7589",
"url": "https://www.suse.com/security/cve/CVE-2016-7589"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-7589",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7589"
},
{
"cve": "CVE-2016-7598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7598"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to obtain sensitive information from process memory via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7598",
"url": "https://www.suse.com/security/cve/CVE-2016-7598"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-7598",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7598"
},
{
"cve": "CVE-2016-7641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7641"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7641",
"url": "https://www.suse.com/security/cve/CVE-2016-7641"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-7641",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7641"
},
{
"cve": "CVE-2016-7654",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7654"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7654",
"url": "https://www.suse.com/security/cve/CVE-2016-7654"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-7654",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7654"
},
{
"cve": "CVE-2016-7656",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7656"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7656",
"url": "https://www.suse.com/security/cve/CVE-2016-7656"
},
{
"category": "external",
"summary": "SUSE Bug 1020950 for CVE-2016-7656",
"url": "https://bugzilla.suse.com/1020950"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-7656"
},
{
"cve": "CVE-2017-1000121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-1000121"
}
],
"notes": [
{
"category": "general",
"text": "The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subsequent buffer overflow in the UI process. This vulnerability does not affect Apple products.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-1000121",
"url": "https://www.suse.com/security/cve/CVE-2017-1000121"
},
{
"category": "external",
"summary": "SUSE Bug 1078996 for CVE-2017-1000121",
"url": "https://bugzilla.suse.com/1078996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-1000121"
},
{
"cve": "CVE-2017-13798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13798"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13798",
"url": "https://www.suse.com/security/cve/CVE-2017-13798"
},
{
"category": "external",
"summary": "SUSE Bug 1069925 for CVE-2017-13798",
"url": "https://bugzilla.suse.com/1069925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-13798"
},
{
"cve": "CVE-2017-13803",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13803"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13803",
"url": "https://www.suse.com/security/cve/CVE-2017-13803"
},
{
"category": "external",
"summary": "SUSE Bug 1069925 for CVE-2017-13803",
"url": "https://bugzilla.suse.com/1069925"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-13803"
},
{
"cve": "CVE-2017-13866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13866"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13866",
"url": "https://www.suse.com/security/cve/CVE-2017-13866"
},
{
"category": "external",
"summary": "SUSE Bug 1073654 for CVE-2017-13866",
"url": "https://bugzilla.suse.com/1073654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-13866"
},
{
"cve": "CVE-2017-13884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13884"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13884",
"url": "https://www.suse.com/security/cve/CVE-2017-13884"
},
{
"category": "external",
"summary": "SUSE Bug 1075775 for CVE-2017-13884",
"url": "https://bugzilla.suse.com/1075775"
},
{
"category": "external",
"summary": "SUSE Bug 1077535 for CVE-2017-13884",
"url": "https://bugzilla.suse.com/1077535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-13884"
},
{
"cve": "CVE-2017-2350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2350"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2350",
"url": "https://www.suse.com/security/cve/CVE-2017-2350"
},
{
"category": "external",
"summary": "SUSE Bug 1024749 for CVE-2017-2350",
"url": "https://bugzilla.suse.com/1024749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-2350"
},
{
"cve": "CVE-2017-2365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2365"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2365",
"url": "https://www.suse.com/security/cve/CVE-2017-2365"
},
{
"category": "external",
"summary": "SUSE Bug 1024749 for CVE-2017-2365",
"url": "https://bugzilla.suse.com/1024749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-2365"
},
{
"cve": "CVE-2017-2371",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2371"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue involves the \"WebKit\" component, which allows remote attackers to launch popups via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2371",
"url": "https://www.suse.com/security/cve/CVE-2017-2371"
},
{
"category": "external",
"summary": "SUSE Bug 1024749 for CVE-2017-2371",
"url": "https://bugzilla.suse.com/1024749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-2371"
},
{
"cve": "CVE-2017-2373",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2373"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2373",
"url": "https://www.suse.com/security/cve/CVE-2017-2373"
},
{
"category": "external",
"summary": "SUSE Bug 1024749 for CVE-2017-2373",
"url": "https://bugzilla.suse.com/1024749"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-2373"
},
{
"cve": "CVE-2017-2496",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2496"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2496",
"url": "https://www.suse.com/security/cve/CVE-2017-2496"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-2496",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-2496"
},
{
"cve": "CVE-2017-2510",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2510"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that improperly interacts with pageshow events.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2510",
"url": "https://www.suse.com/security/cve/CVE-2017-2510"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-2510",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-2510"
},
{
"cve": "CVE-2017-2538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-2538"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-2538",
"url": "https://www.suse.com/security/cve/CVE-2017-2538"
},
{
"category": "external",
"summary": "SUSE Bug 1045460 for CVE-2017-2538",
"url": "https://bugzilla.suse.com/1045460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-2538"
},
{
"cve": "CVE-2017-5753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5753"
}
],
"notes": [
{
"category": "general",
"text": "Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5753",
"url": "https://www.suse.com/security/cve/CVE-2017-5753"
},
{
"category": "external",
"summary": "SUSE Bug 1068032 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1068032"
},
{
"category": "external",
"summary": "SUSE Bug 1074562 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1074562"
},
{
"category": "external",
"summary": "SUSE Bug 1074578 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1074578"
},
{
"category": "external",
"summary": "SUSE Bug 1074701 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1074701"
},
{
"category": "external",
"summary": "SUSE Bug 1075006 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1075006"
},
{
"category": "external",
"summary": "SUSE Bug 1075419 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1075419"
},
{
"category": "external",
"summary": "SUSE Bug 1075748 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1075748"
},
{
"category": "external",
"summary": "SUSE Bug 1080039 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1080039"
},
{
"category": "external",
"summary": "SUSE Bug 1087084 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1087084"
},
{
"category": "external",
"summary": "SUSE Bug 1087939 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1087939"
},
{
"category": "external",
"summary": "SUSE Bug 1089055 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1089055"
},
{
"category": "external",
"summary": "SUSE Bug 1136865 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1136865"
},
{
"category": "external",
"summary": "SUSE Bug 1178658 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1178658"
},
{
"category": "external",
"summary": "SUSE Bug 1201877 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1201877"
},
{
"category": "external",
"summary": "SUSE Bug 1209547 for CVE-2017-5753",
"url": "https://bugzilla.suse.com/1209547"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5753"
},
{
"cve": "CVE-2017-7006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7006"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to conduct a timing side-channel attack to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses SVG filters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7006",
"url": "https://www.suse.com/security/cve/CVE-2017-7006"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7006",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7006"
},
{
"cve": "CVE-2017-7019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7019"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit Page Loading\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7019",
"url": "https://www.suse.com/security/cve/CVE-2017-7019"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7019",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7019"
},
{
"cve": "CVE-2017-7020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7020"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7020",
"url": "https://www.suse.com/security/cve/CVE-2017-7020"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7020",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7020"
},
{
"cve": "CVE-2017-7030",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7030"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7030",
"url": "https://www.suse.com/security/cve/CVE-2017-7030"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7030",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7030"
},
{
"cve": "CVE-2017-7039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7039"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7039",
"url": "https://www.suse.com/security/cve/CVE-2017-7039"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7039",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7039"
},
{
"cve": "CVE-2017-7043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7043"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7043",
"url": "https://www.suse.com/security/cve/CVE-2017-7043"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7043",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7043"
},
{
"cve": "CVE-2017-7046",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7046"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7046",
"url": "https://www.suse.com/security/cve/CVE-2017-7046"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7046",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7046"
},
{
"cve": "CVE-2017-7052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7052"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7052",
"url": "https://www.suse.com/security/cve/CVE-2017-7052"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7052",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7052"
},
{
"cve": "CVE-2017-7056",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7056"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7056",
"url": "https://www.suse.com/security/cve/CVE-2017-7056"
},
{
"category": "external",
"summary": "SUSE Bug 1050469 for CVE-2017-7056",
"url": "https://bugzilla.suse.com/1050469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-7056"
},
{
"cve": "CVE-2017-7081",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7081"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7081",
"url": "https://www.suse.com/security/cve/CVE-2017-7081"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7081",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7081"
},
{
"cve": "CVE-2017-7089",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7089"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. The issue involves the \"WebKit\" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that is mishandled during parent-tab processing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7089",
"url": "https://www.suse.com/security/cve/CVE-2017-7089"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7089",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7089"
},
{
"cve": "CVE-2017-7093",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7093"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7093",
"url": "https://www.suse.com/security/cve/CVE-2017-7093"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7093",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7093"
},
{
"cve": "CVE-2017-7098",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7098"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7098",
"url": "https://www.suse.com/security/cve/CVE-2017-7098"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7098",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7098"
},
{
"cve": "CVE-2017-7104",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7104"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7104",
"url": "https://www.suse.com/security/cve/CVE-2017-7104"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7104",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7104"
},
{
"cve": "CVE-2017-7117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7117"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7117",
"url": "https://www.suse.com/security/cve/CVE-2017-7117"
},
{
"category": "external",
"summary": "SUSE Bug 1066892 for CVE-2017-7117",
"url": "https://bugzilla.suse.com/1066892"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7117"
},
{
"cve": "CVE-2017-7156",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7156"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7156",
"url": "https://www.suse.com/security/cve/CVE-2017-7156"
},
{
"category": "external",
"summary": "SUSE Bug 1073654 for CVE-2017-7156",
"url": "https://bugzilla.suse.com/1073654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7156"
},
{
"cve": "CVE-2017-7157",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7157"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7157",
"url": "https://www.suse.com/security/cve/CVE-2017-7157"
},
{
"category": "external",
"summary": "SUSE Bug 1073654 for CVE-2017-7157",
"url": "https://bugzilla.suse.com/1073654"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7157"
},
{
"cve": "CVE-2017-7161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7161"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. Safari before 11.0.2 is affected. The issue involves the \"WebKit Web Inspector\" component. It allows remote attackers to execute arbitrary code via special characters that trigger command injection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7161",
"url": "https://www.suse.com/security/cve/CVE-2017-7161"
},
{
"category": "external",
"summary": "SUSE Bug 1075775 for CVE-2017-7161",
"url": "https://bugzilla.suse.com/1075775"
},
{
"category": "external",
"summary": "SUSE Bug 1077535 for CVE-2017-7161",
"url": "https://bugzilla.suse.com/1077535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-7161"
},
{
"cve": "CVE-2018-11646",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-11646"
}
],
"notes": [
{
"category": "general",
"text": "webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-11646",
"url": "https://www.suse.com/security/cve/CVE-2018-11646"
},
{
"category": "external",
"summary": "SUSE Bug 1095611 for CVE-2018-11646",
"url": "https://bugzilla.suse.com/1095611"
},
{
"category": "external",
"summary": "SUSE Bug 1097693 for CVE-2018-11646",
"url": "https://bugzilla.suse.com/1097693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-11646"
},
{
"cve": "CVE-2018-12911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-12911"
}
],
"notes": [
{
"category": "general",
"text": "WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bounds write, in the get_simple_globs functions in ThirdParty/xdgmime/src/xdgmimecache.c and ThirdParty/xdgmime/src/xdgmimeglob.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-12911",
"url": "https://www.suse.com/security/cve/CVE-2018-12911"
},
{
"category": "external",
"summary": "SUSE Bug 1101999 for CVE-2018-12911",
"url": "https://bugzilla.suse.com/1101999"
},
{
"category": "external",
"summary": "SUSE Bug 1104169 for CVE-2018-12911",
"url": "https://bugzilla.suse.com/1104169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-12911"
},
{
"cve": "CVE-2018-4088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4088"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. Safari before 11.0.3 is affected. iCloud before 7.3 on Windows is affected. iTunes before 12.7.3 on Windows is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4088",
"url": "https://www.suse.com/security/cve/CVE-2018-4088"
},
{
"category": "external",
"summary": "SUSE Bug 1075775 for CVE-2018-4088",
"url": "https://bugzilla.suse.com/1075775"
},
{
"category": "external",
"summary": "SUSE Bug 1077535 for CVE-2018-4088",
"url": "https://bugzilla.suse.com/1077535"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4088"
},
{
"cve": "CVE-2018-4101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4101"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4101",
"url": "https://www.suse.com/security/cve/CVE-2018-4101"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4101",
"url": "https://bugzilla.suse.com/1088182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4101"
},
{
"cve": "CVE-2018-4117",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4117"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the \"WebKit\" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4117",
"url": "https://www.suse.com/security/cve/CVE-2018-4117"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4117",
"url": "https://bugzilla.suse.com/1088182"
},
{
"category": "external",
"summary": "SUSE Bug 1102530 for CVE-2018-4117",
"url": "https://bugzilla.suse.com/1102530"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4117"
},
{
"cve": "CVE-2018-4120",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4120"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4120",
"url": "https://www.suse.com/security/cve/CVE-2018-4120"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4120",
"url": "https://bugzilla.suse.com/1088182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4120"
},
{
"cve": "CVE-2018-4127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4127"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4127",
"url": "https://www.suse.com/security/cve/CVE-2018-4127"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4127",
"url": "https://bugzilla.suse.com/1088182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4127"
},
{
"cve": "CVE-2018-4133",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4133"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. Safari before 11.1 is affected. The issue involves the \"WebKit\" component. A Safari cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via a crafted URL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4133",
"url": "https://www.suse.com/security/cve/CVE-2018-4133"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4133",
"url": "https://bugzilla.suse.com/1088182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4133"
},
{
"cve": "CVE-2018-4162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4162"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4162",
"url": "https://www.suse.com/security/cve/CVE-2018-4162"
},
{
"category": "external",
"summary": "SUSE Bug 1088182 for CVE-2018-4162",
"url": "https://bugzilla.suse.com/1088182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4162"
},
{
"cve": "CVE-2018-4190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4190"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to obtain sensitive credential information that is transmitted during a CSS mask-image fetch.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4190",
"url": "https://www.suse.com/security/cve/CVE-2018-4190"
},
{
"category": "external",
"summary": "SUSE Bug 1097693 for CVE-2018-4190",
"url": "https://bugzilla.suse.com/1097693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4190"
},
{
"cve": "CVE-2018-4191",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4191"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4191",
"url": "https://www.suse.com/security/cve/CVE-2018-4191"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4191",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4191"
},
{
"cve": "CVE-2018-4200",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4200"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site that triggers a WebCore::jsElementScrollHeightGetter use-after-free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4200",
"url": "https://www.suse.com/security/cve/CVE-2018-4200"
},
{
"category": "external",
"summary": "SUSE Bug 1092280 for CVE-2018-4200",
"url": "https://bugzilla.suse.com/1092280"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4200"
},
{
"cve": "CVE-2018-4204",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4204"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4204",
"url": "https://www.suse.com/security/cve/CVE-2018-4204"
},
{
"category": "external",
"summary": "SUSE Bug 1092279 for CVE-2018-4204",
"url": "https://bugzilla.suse.com/1092279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4204"
},
{
"cve": "CVE-2018-4207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4207"
}
],
"notes": [
{
"category": "general",
"text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4207",
"url": "https://www.suse.com/security/cve/CVE-2018-4207"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4207",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4207"
},
{
"cve": "CVE-2018-4212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4212"
}
],
"notes": [
{
"category": "general",
"text": "In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4212",
"url": "https://www.suse.com/security/cve/CVE-2018-4212"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4212",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4212"
},
{
"cve": "CVE-2018-4222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4222"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the \"WebKit\" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages a getWasmBufferFromValue out-of-bounds read during WebAssembly compilation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4222",
"url": "https://www.suse.com/security/cve/CVE-2018-4222"
},
{
"category": "external",
"summary": "SUSE Bug 1097693 for CVE-2018-4222",
"url": "https://bugzilla.suse.com/1097693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4222"
},
{
"cve": "CVE-2018-4261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4261"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4261",
"url": "https://www.suse.com/security/cve/CVE-2018-4261"
},
{
"category": "external",
"summary": "SUSE Bug 1104169 for CVE-2018-4261",
"url": "https://bugzilla.suse.com/1104169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4261"
},
{
"cve": "CVE-2018-4264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4264"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4264",
"url": "https://www.suse.com/security/cve/CVE-2018-4264"
},
{
"category": "external",
"summary": "SUSE Bug 1104169 for CVE-2018-4264",
"url": "https://bugzilla.suse.com/1104169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4264"
},
{
"cve": "CVE-2018-4270",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4270"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4270",
"url": "https://www.suse.com/security/cve/CVE-2018-4270"
},
{
"category": "external",
"summary": "SUSE Bug 1104169 for CVE-2018-4270",
"url": "https://bugzilla.suse.com/1104169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4270"
},
{
"cve": "CVE-2018-4284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4284"
}
],
"notes": [
{
"category": "general",
"text": "A type confusion issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4284",
"url": "https://www.suse.com/security/cve/CVE-2018-4284"
},
{
"category": "external",
"summary": "SUSE Bug 1104169 for CVE-2018-4284",
"url": "https://bugzilla.suse.com/1104169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4284"
},
{
"cve": "CVE-2018-4306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4306"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4306",
"url": "https://www.suse.com/security/cve/CVE-2018-4306"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4306",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4306"
},
{
"cve": "CVE-2018-4315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4315"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4315",
"url": "https://www.suse.com/security/cve/CVE-2018-4315"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4315",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4315"
},
{
"cve": "CVE-2018-4319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4319"
}
],
"notes": [
{
"category": "general",
"text": "A cross-origin issue existed with \"iframe\" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4319",
"url": "https://www.suse.com/security/cve/CVE-2018-4319"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4319",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4319"
},
{
"cve": "CVE-2018-4345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4345"
}
],
"notes": [
{
"category": "general",
"text": "A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4345",
"url": "https://www.suse.com/security/cve/CVE-2018-4345"
},
{
"category": "external",
"summary": "SUSE Bug 1116998 for CVE-2018-4345",
"url": "https://bugzilla.suse.com/1116998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4345"
},
{
"cve": "CVE-2018-4359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4359"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4359",
"url": "https://www.suse.com/security/cve/CVE-2018-4359"
},
{
"category": "external",
"summary": "SUSE Bug 1110279 for CVE-2018-4359",
"url": "https://bugzilla.suse.com/1110279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-4359"
},
{
"cve": "CVE-2018-4372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4372"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4372",
"url": "https://www.suse.com/security/cve/CVE-2018-4372"
},
{
"category": "external",
"summary": "SUSE Bug 1116998 for CVE-2018-4372",
"url": "https://bugzilla.suse.com/1116998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4372"
},
{
"cve": "CVE-2018-4375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4375"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4375",
"url": "https://www.suse.com/security/cve/CVE-2018-4375"
},
{
"category": "external",
"summary": "SUSE Bug 1116998 for CVE-2018-4375",
"url": "https://bugzilla.suse.com/1116998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4375"
},
{
"cve": "CVE-2018-4382",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4382"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4382",
"url": "https://www.suse.com/security/cve/CVE-2018-4382"
},
{
"category": "external",
"summary": "SUSE Bug 1116998 for CVE-2018-4382",
"url": "https://bugzilla.suse.com/1116998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-4382"
},
{
"cve": "CVE-2018-4437",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4437"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4437",
"url": "https://www.suse.com/security/cve/CVE-2018-4437"
},
{
"category": "external",
"summary": "SUSE Bug 1119553 for CVE-2018-4437",
"url": "https://bugzilla.suse.com/1119553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2018-4437"
},
{
"cve": "CVE-2018-4441",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4441"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4441",
"url": "https://www.suse.com/security/cve/CVE-2018-4441"
},
{
"category": "external",
"summary": "SUSE Bug 1119555 for CVE-2018-4441",
"url": "https://bugzilla.suse.com/1119555"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2018-4441"
},
{
"cve": "CVE-2018-4443",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-4443"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-4443",
"url": "https://www.suse.com/security/cve/CVE-2018-4443"
},
{
"category": "external",
"summary": "SUSE Bug 1119557 for CVE-2018-4443",
"url": "https://bugzilla.suse.com/1119557"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2018-4443"
},
{
"cve": "CVE-2019-6212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6212"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6212",
"url": "https://www.suse.com/security/cve/CVE-2019-6212"
},
{
"category": "external",
"summary": "SUSE Bug 1124937 for CVE-2019-6212",
"url": "https://bugzilla.suse.com/1124937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-6212"
},
{
"cve": "CVE-2019-6216",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6216"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6216",
"url": "https://www.suse.com/security/cve/CVE-2019-6216"
},
{
"category": "external",
"summary": "SUSE Bug 1124937 for CVE-2019-6216",
"url": "https://bugzilla.suse.com/1124937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-6216"
},
{
"cve": "CVE-2019-6229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6229"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6229",
"url": "https://www.suse.com/security/cve/CVE-2019-6229"
},
{
"category": "external",
"summary": "SUSE Bug 1124937 for CVE-2019-6229",
"url": "https://bugzilla.suse.com/1124937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-6229"
},
{
"cve": "CVE-2019-6251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6251"
}
],
"notes": [
{
"category": "general",
"text": "WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6251",
"url": "https://www.suse.com/security/cve/CVE-2019-6251"
},
{
"category": "external",
"summary": "SUSE Bug 1121894 for CVE-2019-6251",
"url": "https://bugzilla.suse.com/1121894"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-6251",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-6251"
},
{
"cve": "CVE-2019-7285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-7285"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-7285",
"url": "https://www.suse.com/security/cve/CVE-2019-7285"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-7285",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-7285"
},
{
"cve": "CVE-2019-8375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8375"
}
],
"notes": [
{
"category": "general",
"text": "The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent the script dialog size from exceeding the web view size, which allows remote attackers to cause a denial of service (Buffer Overflow) or possibly have unspecified other impact, related to UIProcess/API/gtk/WebKitScriptDialogGtk.cpp, UIProcess/API/gtk/WebKitScriptDialogImpl.cpp, and UIProcess/API/gtk/WebKitWebViewGtk.cpp, as demonstrated by GNOME Web (aka Epiphany).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8375",
"url": "https://www.suse.com/security/cve/CVE-2019-8375"
},
{
"category": "external",
"summary": "SUSE Bug 1126768 for CVE-2019-8375",
"url": "https://bugzilla.suse.com/1126768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8375"
},
{
"cve": "CVE-2019-8518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8518"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8518",
"url": "https://www.suse.com/security/cve/CVE-2019-8518"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8518",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8518"
},
{
"cve": "CVE-2019-8524",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8524"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8524",
"url": "https://www.suse.com/security/cve/CVE-2019-8524"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8524",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8524"
},
{
"cve": "CVE-2019-8551",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8551"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8551",
"url": "https://www.suse.com/security/cve/CVE-2019-8551"
},
{
"category": "external",
"summary": "SUSE Bug 1132256 for CVE-2019-8551",
"url": "https://bugzilla.suse.com/1132256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8551"
},
{
"cve": "CVE-2019-8595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8595"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8595",
"url": "https://www.suse.com/security/cve/CVE-2019-8595"
},
{
"category": "external",
"summary": "SUSE Bug 1135715 for CVE-2019-8595",
"url": "https://bugzilla.suse.com/1135715"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2019-8595"
},
{
"cve": "CVE-2019-8625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8625"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8625",
"url": "https://www.suse.com/security/cve/CVE-2019-8625"
},
{
"category": "external",
"summary": "SUSE Bug 1155321 for CVE-2019-8625",
"url": "https://bugzilla.suse.com/1155321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8625"
},
{
"cve": "CVE-2019-8644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8644"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8644",
"url": "https://www.suse.com/security/cve/CVE-2019-8644"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8644",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8644"
},
{
"cve": "CVE-2019-8666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8666"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8666",
"url": "https://www.suse.com/security/cve/CVE-2019-8666"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8666",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8666"
},
{
"cve": "CVE-2019-8669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8669"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8669",
"url": "https://www.suse.com/security/cve/CVE-2019-8669"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8669",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8669"
},
{
"cve": "CVE-2019-8671",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8671"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8671",
"url": "https://www.suse.com/security/cve/CVE-2019-8671"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8671",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8671"
},
{
"cve": "CVE-2019-8681",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8681"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8681",
"url": "https://www.suse.com/security/cve/CVE-2019-8681"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8681",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8681"
},
{
"cve": "CVE-2019-8684",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8684"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8684",
"url": "https://www.suse.com/security/cve/CVE-2019-8684"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8684",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8684"
},
{
"cve": "CVE-2019-8686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8686"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8686",
"url": "https://www.suse.com/security/cve/CVE-2019-8686"
},
{
"category": "external",
"summary": "SUSE Bug 1148931 for CVE-2019-8686",
"url": "https://bugzilla.suse.com/1148931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-8686"
},
{
"cve": "CVE-2019-8719",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8719"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8719",
"url": "https://www.suse.com/security/cve/CVE-2019-8719"
},
{
"category": "external",
"summary": "SUSE Bug 1155321 for CVE-2019-8719",
"url": "https://bugzilla.suse.com/1155321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8719"
},
{
"cve": "CVE-2019-8726",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8726"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows 10.7, iCloud for Windows 7.14. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8726",
"url": "https://www.suse.com/security/cve/CVE-2019-8726"
},
{
"category": "external",
"summary": "SUSE Bug 1155321 for CVE-2019-8726",
"url": "https://bugzilla.suse.com/1155321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8726"
},
{
"cve": "CVE-2019-8766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8766"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in watchOS 6.1, iCloud for Windows 11.0. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8766",
"url": "https://www.suse.com/security/cve/CVE-2019-8766"
},
{
"category": "external",
"summary": "SUSE Bug 1156318 for CVE-2019-8766",
"url": "https://bugzilla.suse.com/1156318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8766"
},
{
"cve": "CVE-2019-8768",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8768"
}
],
"notes": [
{
"category": "general",
"text": "\"Clear History and Website Data\" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Catalina 10.15. A user may be unable to delete browsing history items.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8768",
"url": "https://www.suse.com/security/cve/CVE-2019-8768"
},
{
"category": "external",
"summary": "SUSE Bug 1155321 for CVE-2019-8768",
"url": "https://bugzilla.suse.com/1155321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8768"
},
{
"cve": "CVE-2019-8771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8771"
}
],
"notes": [
{
"category": "general",
"text": "This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 13.0.1, iOS 13. Maliciously crafted web content may violate iframe sandboxing policy.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8771",
"url": "https://www.suse.com/security/cve/CVE-2019-8771"
},
{
"category": "external",
"summary": "SUSE Bug 1155321 for CVE-2019-8771",
"url": "https://bugzilla.suse.com/1155321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8771"
},
{
"cve": "CVE-2019-8783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8783"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8783",
"url": "https://www.suse.com/security/cve/CVE-2019-8783"
},
{
"category": "external",
"summary": "SUSE Bug 1156318 for CVE-2019-8783",
"url": "https://bugzilla.suse.com/1156318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8783"
},
{
"cve": "CVE-2019-8812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8812"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8812",
"url": "https://www.suse.com/security/cve/CVE-2019-8812"
},
{
"category": "external",
"summary": "SUSE Bug 1156318 for CVE-2019-8812",
"url": "https://bugzilla.suse.com/1156318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8812"
},
{
"cve": "CVE-2019-8816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8816"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, watchOS 6.1, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8816",
"url": "https://www.suse.com/security/cve/CVE-2019-8816"
},
{
"category": "external",
"summary": "SUSE Bug 1156318 for CVE-2019-8816",
"url": "https://bugzilla.suse.com/1156318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8816"
},
{
"cve": "CVE-2019-8821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8821"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTunes for Windows 12.10.2, iCloud for Windows 11.0, iCloud for Windows 7.15. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8821",
"url": "https://www.suse.com/security/cve/CVE-2019-8821"
},
{
"category": "external",
"summary": "SUSE Bug 1156318 for CVE-2019-8821",
"url": "https://bugzilla.suse.com/1156318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8821"
},
{
"cve": "CVE-2019-8835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8835"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13.3, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8835",
"url": "https://www.suse.com/security/cve/CVE-2019-8835"
},
{
"category": "external",
"summary": "SUSE Bug 1161719 for CVE-2019-8835",
"url": "https://bugzilla.suse.com/1161719"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-8835"
},
{
"cve": "CVE-2020-10018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10018"
}
],
"notes": [
{
"category": "general",
"text": "WebKitGTK through 2.26.4 and WPE WebKit through 2.26.4 (which are the versions right before 2.28.0) contains a memory corruption issue (use-after-free) that may lead to arbitrary code execution. This issue has been fixed in 2.28.0 with improved memory handling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10018",
"url": "https://www.suse.com/security/cve/CVE-2020-10018"
},
{
"category": "external",
"summary": "SUSE Bug 1165528 for CVE-2020-10018",
"url": "https://bugzilla.suse.com/1165528"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-10018"
},
{
"cve": "CVE-2020-11793",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11793"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11793",
"url": "https://www.suse.com/security/cve/CVE-2020-11793"
},
{
"category": "external",
"summary": "SUSE Bug 1169658 for CVE-2020-11793",
"url": "https://bugzilla.suse.com/1169658"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-11793"
},
{
"cve": "CVE-2020-13558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13558"
}
],
"notes": [
{
"category": "general",
"text": "A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13558",
"url": "https://www.suse.com/security/cve/CVE-2020-13558"
},
{
"category": "external",
"summary": "SUSE Bug 1182286 for CVE-2020-13558",
"url": "https://bugzilla.suse.com/1182286"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13558"
},
{
"cve": "CVE-2020-13584",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13584"
}
],
"notes": [
{
"category": "general",
"text": "An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The victim needs to visit a malicious web site to trigger this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13584",
"url": "https://www.suse.com/security/cve/CVE-2020-13584"
},
{
"category": "external",
"summary": "SUSE Bug 1179122 for CVE-2020-13584",
"url": "https://bugzilla.suse.com/1179122"
},
{
"category": "external",
"summary": "SUSE Bug 1179910 for CVE-2020-13584",
"url": "https://bugzilla.suse.com/1179910"
},
{
"category": "external",
"summary": "SUSE Bug 1179911 for CVE-2020-13584",
"url": "https://bugzilla.suse.com/1179911"
},
{
"category": "external",
"summary": "SUSE Bug 1179912 for CVE-2020-13584",
"url": "https://bugzilla.suse.com/1179912"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13584"
},
{
"cve": "CVE-2020-13753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13753"
}
],
"notes": [
{
"category": "general",
"text": "The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. CLONE_NEWUSER could potentially be used to confuse xdg-desktop-portal, which allows access outside the sandbox. TIOCSTI can be used to directly execute commands outside the sandbox by writing to the controlling terminal\u0027s input buffer, similar to CVE-2017-5226.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13753",
"url": "https://www.suse.com/security/cve/CVE-2020-13753"
},
{
"category": "external",
"summary": "SUSE Bug 1173998 for CVE-2020-13753",
"url": "https://bugzilla.suse.com/1173998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-13753"
},
{
"cve": "CVE-2020-27918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-27918"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 14.2, iCloud for Windows 11.5, Safari 14.0.1, tvOS 14.2, iTunes 12.11 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-27918",
"url": "https://www.suse.com/security/cve/CVE-2020-27918"
},
{
"category": "external",
"summary": "SUSE Bug 1184262 for CVE-2020-27918",
"url": "https://bugzilla.suse.com/1184262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-27918"
},
{
"cve": "CVE-2020-3862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3862"
}
],
"notes": [
{
"category": "general",
"text": "A denial of service issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. A malicious website may be able to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3862",
"url": "https://www.suse.com/security/cve/CVE-2020-3862"
},
{
"category": "external",
"summary": "SUSE Bug 1163809 for CVE-2020-3862",
"url": "https://bugzilla.suse.com/1163809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-3862"
},
{
"cve": "CVE-2020-3867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3867"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3867",
"url": "https://www.suse.com/security/cve/CVE-2020-3867"
},
{
"category": "external",
"summary": "SUSE Bug 1163809 for CVE-2020-3867",
"url": "https://bugzilla.suse.com/1163809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-3867"
},
{
"cve": "CVE-2020-3895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3895"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3895",
"url": "https://www.suse.com/security/cve/CVE-2020-3895"
},
{
"category": "external",
"summary": "SUSE Bug 1170643 for CVE-2020-3895",
"url": "https://bugzilla.suse.com/1170643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-3895"
},
{
"cve": "CVE-2020-3899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3899"
}
],
"notes": [
{
"category": "general",
"text": "A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A remote attacker may be able to cause arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3899",
"url": "https://www.suse.com/security/cve/CVE-2020-3899"
},
{
"category": "external",
"summary": "SUSE Bug 1170643 for CVE-2020-3899",
"url": "https://bugzilla.suse.com/1170643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-3899"
},
{
"cve": "CVE-2020-3902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-3902"
}
],
"notes": [
{
"category": "general",
"text": "An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to a cross site scripting attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-3902",
"url": "https://www.suse.com/security/cve/CVE-2020-3902"
},
{
"category": "external",
"summary": "SUSE Bug 1170643 for CVE-2020-3902",
"url": "https://bugzilla.suse.com/1170643"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-3902"
},
{
"cve": "CVE-2020-9802",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-9802"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-9802",
"url": "https://www.suse.com/security/cve/CVE-2020-9802"
},
{
"category": "external",
"summary": "SUSE Bug 1173998 for CVE-2020-9802",
"url": "https://bugzilla.suse.com/1173998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-9802"
},
{
"cve": "CVE-2020-9806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-9806"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-9806",
"url": "https://www.suse.com/security/cve/CVE-2020-9806"
},
{
"category": "external",
"summary": "SUSE Bug 1173998 for CVE-2020-9806",
"url": "https://bugzilla.suse.com/1173998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-9806"
},
{
"cve": "CVE-2020-9862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-9862"
}
],
"notes": [
{
"category": "general",
"text": "A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Copying a URL from Web Inspector may lead to command injection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-9862",
"url": "https://www.suse.com/security/cve/CVE-2020-9862"
},
{
"category": "external",
"summary": "SUSE Bug 1174662 for CVE-2020-9862",
"url": "https://bugzilla.suse.com/1174662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-9862"
},
{
"cve": "CVE-2020-9895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-9895"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-9895",
"url": "https://www.suse.com/security/cve/CVE-2020-9895"
},
{
"category": "external",
"summary": "SUSE Bug 1174662 for CVE-2020-9895",
"url": "https://bugzilla.suse.com/1174662"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-9895"
},
{
"cve": "CVE-2020-9947",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-9947"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in watchOS 7.0, iOS 14.0 and iPadOS 14.0, iTunes for Windows 12.10.9, iCloud for Windows 11.5, tvOS 14.0, Safari 14.0. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-9947",
"url": "https://www.suse.com/security/cve/CVE-2020-9947"
},
{
"category": "external",
"summary": "SUSE Bug 1184262 for CVE-2020-9947",
"url": "https://bugzilla.suse.com/1184262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2020-9947"
},
{
"cve": "CVE-2021-1788",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-1788"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-1788",
"url": "https://www.suse.com/security/cve/CVE-2021-1788"
},
{
"category": "external",
"summary": "SUSE Bug 1184155 for CVE-2021-1788",
"url": "https://bugzilla.suse.com/1184155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2021-1788"
},
{
"cve": "CVE-2021-1789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-1789"
}
],
"notes": [
{
"category": "general",
"text": "A type confusion issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.4, watchOS 7.3, iOS 14.4 and iPadOS 14.4, Safari 14.0.3. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-1789",
"url": "https://www.suse.com/security/cve/CVE-2021-1789"
},
{
"category": "external",
"summary": "SUSE Bug 1184262 for CVE-2021-1789",
"url": "https://bugzilla.suse.com/1184262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2021-1789"
},
{
"cve": "CVE-2021-1817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-1817"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-1817",
"url": "https://www.suse.com/security/cve/CVE-2021-1817"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-1817",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-1817"
},
{
"cve": "CVE-2021-21775",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21775"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked into visiting a malicious webpage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21775",
"url": "https://www.suse.com/security/cve/CVE-2021-21775"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-21775",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-21775"
},
{
"cve": "CVE-2021-21806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21806"
}
],
"notes": [
{
"category": "general",
"text": "An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21806",
"url": "https://www.suse.com/security/cve/CVE-2021-21806"
},
{
"category": "external",
"summary": "SUSE Bug 1188294 for CVE-2021-21806",
"url": "https://bugzilla.suse.com/1188294"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-21806",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-21806"
},
{
"cve": "CVE-2021-30661",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30661"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1, iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30661",
"url": "https://www.suse.com/security/cve/CVE-2021-30661"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30661",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30661"
},
{
"cve": "CVE-2021-30665",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30665"
}
],
"notes": [
{
"category": "general",
"text": "A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 7.4.1, iOS 14.5.1 and iPadOS 14.5.1, tvOS 14.6, iOS 12.5.3, macOS Big Sur 11.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30665",
"url": "https://www.suse.com/security/cve/CVE-2021-30665"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30665",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30665"
},
{
"cve": "CVE-2021-30666",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30666"
}
],
"notes": [
{
"category": "general",
"text": "A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.5.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30666",
"url": "https://www.suse.com/security/cve/CVE-2021-30666"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30666",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30666"
},
{
"cve": "CVE-2021-30682",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30682"
}
],
"notes": [
{
"category": "general",
"text": "A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to leak sensitive user information.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30682",
"url": "https://www.suse.com/security/cve/CVE-2021-30682"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30682",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30682"
},
{
"cve": "CVE-2021-30744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30744"
}
],
"notes": [
{
"category": "general",
"text": "Description: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30744",
"url": "https://www.suse.com/security/cve/CVE-2021-30744"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30744",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30744"
},
{
"cve": "CVE-2021-30758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30758"
}
],
"notes": [
{
"category": "general",
"text": "A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30758",
"url": "https://www.suse.com/security/cve/CVE-2021-30758"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30758",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30758"
},
{
"cve": "CVE-2021-30799",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30799"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing maliciously crafted web content may lead to arbitrary code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30799",
"url": "https://www.suse.com/security/cve/CVE-2021-30799"
},
{
"category": "external",
"summary": "SUSE Bug 1188697 for CVE-2021-30799",
"url": "https://bugzilla.suse.com/1188697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30799"
},
{
"cve": "CVE-2021-30858",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30858"
}
],
"notes": [
{
"category": "general",
"text": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30858",
"url": "https://www.suse.com/security/cve/CVE-2021-30858"
},
{
"category": "external",
"summary": "SUSE Bug 1190701 for CVE-2021-30858",
"url": "https://bugzilla.suse.com/1190701"
},
{
"category": "external",
"summary": "SUSE Bug 1191298 for CVE-2021-30858",
"url": "https://bugzilla.suse.com/1191298"
},
{
"category": "external",
"summary": "SUSE Bug 1191301 for CVE-2021-30858",
"url": "https://bugzilla.suse.com/1191301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libjavascriptcoregtk-4_0-18-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk-4_0-37-32bit-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:libwebkit2gtk3-lang-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:typelib-1_0-WebKit2WebExtension-4_0-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit-jsc-4-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk-4_0-injected-bundles-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-devel-2.32.4-1.1.x86_64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.aarch64",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.ppc64le",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.s390x",
"openSUSE Tumbleweed:webkit2gtk3-minibrowser-2.32.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30858"
}
]
}
FKIE_CVE-2019-6251
Vulnerability from fkie_nvd - Published: 2019-01-14 08:29 - Updated: 2024-11-21 04:46
Severity ?
Summary
WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html | Third Party Advisory | |
| cve@mitre.org | http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html | Third Party Advisory | |
| cve@mitre.org | http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html | Third Party Advisory, VDB Entry | |
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2019/04/11/1 | Mailing List, Third Party Advisory | |
| cve@mitre.org | https://bugs.webkit.org/show_bug.cgi?id=194208 | Issue Tracking, Vendor Advisory | |
| cve@mitre.org | https://gitlab.gnome.org/GNOME/epiphany/issues/532 | Exploit, Patch, Third Party Advisory | |
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/ | ||
| cve@mitre.org | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/ | ||
| cve@mitre.org | https://seclists.org/bugtraq/2019/Apr/21 | Mailing List, Third Party Advisory | |
| cve@mitre.org | https://security.gentoo.org/glsa/201909-05 | ||
| cve@mitre.org | https://trac.webkit.org/changeset/243434 | Patch, Vendor Advisory | |
| cve@mitre.org | https://usn.ubuntu.com/3948-1/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2019/04/11/1 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugs.webkit.org/show_bug.cgi?id=194208 | Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://gitlab.gnome.org/GNOME/epiphany/issues/532 | Exploit, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://seclists.org/bugtraq/2019/Apr/21 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/201909-05 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://trac.webkit.org/changeset/243434 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3948-1/ | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| gnome | epiphany | * | |
| webkitgtk | webkitgtk | * | |
| wpewebkit | wpe_webkit | * | |
| fedoraproject | fedora | 28 | |
| fedoraproject | fedora | 29 | |
| fedoraproject | fedora | 30 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 18.10 | |
| opensuse | leap | 15.0 | |
| opensuse | leap | 42.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:gnome:epiphany:*:*:*:*:*:*:*:*",
"matchCriteriaId": "F62B1562-9E8B-4E4D-811D-8D5064595923",
"versionEndIncluding": "3.31.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
"matchCriteriaId": "08565239-2C80-4C9F-A270-6076E455DD91",
"versionEndExcluding": "2.24.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*",
"matchCriteriaId": "46E10007-E315-4E7B-99DC-44F7E4C8523C",
"versionEndExcluding": "2.24.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*",
"matchCriteriaId": "DC1BD7B7-6D88-42B8-878E-F1318CA5FCAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5F65DAB0-3DAD-49FF-BC73-3581CC3D5BF3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a trusted URI. This is similar to the CVE-2018-8383 issue in Microsoft Edge."
},
{
"lang": "es",
"value": "WebKitGTK y WPE WebKit versiones anteriores a 2.24.1 permite la suplantaci\u00f3n de la barra de direcciones en determinadas redirecciones de JavaScript. Un atacante puede hacer que el contenido web malicioso se muestre como si se tratara de una URL de confianza. Esto es similar a la edici\u00f3n CVE-2018-8383 en Microsoft Edge."
}
],
"id": "CVE-2019-6251",
"lastModified": "2024-11-21T04:46:18.887",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.2,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-01-14T08:29:00.223",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/11/1"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugs.webkit.org/show_bug.cgi?id=194208"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
],
"url": "https://gitlab.gnome.org/GNOME/epiphany/issues/532"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://seclists.org/bugtraq/2019/Apr/21"
},
{
"source": "cve@mitre.org",
"url": "https://security.gentoo.org/glsa/201909-05"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://trac.webkit.org/changeset/243434"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3948-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00025.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00031.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://packetstormsecurity.com/files/152485/WebKitGTK-WPE-WebKit-URI-Spoofing-Code-Execution.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2019/04/11/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugs.webkit.org/show_bug.cgi?id=194208"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
],
"url": "https://gitlab.gnome.org/GNOME/epiphany/issues/532"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HSCDI3635E37GL4BNJDRDT2KEUBDLGSO/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LACVFU4MYYRPJ3IEA4UCN5KUEAGCCJ72/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNPI3R6QWDJBA5KNGA6QSMKYLY5RRHBZ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO3DIA54X7FOUWFZW5YXC2MZ6KNHG6SW/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YO5ZBUWOOXMVZPBYLZRDZF6ZQGBYJERQ/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://seclists.org/bugtraq/2019/Apr/21"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201909-05"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://trac.webkit.org/changeset/243434"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3948-1/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
RHSA-2019:3553
Vulnerability from csaf_redhat - Published: 2019-11-05 21:08 - Updated: 2025-11-21 18:10Summary
Red Hat Security Advisory: GNOME security, bug fix, and enhancement update
Notes
Topic
An update for GNOME is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
GNOME is the default desktop environment of Red Hat Enterprise Linux.
Security Fix(es):
* evince: uninitialized memory use in function tiff_document_render() and tiff_document_get_thumbnail() (CVE-2019-11459)
* gvfs: improper authorization in daemon/gvfsdaemon.c in gvfsd (CVE-2019-12795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.