ALSA-2023:3433

[ALSA-2023:3433] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2023-06-06

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.

Security Fix(es):

* webkitgtk: a use-after-free when processing maliciously crafted web content (CVE-2023-32373)
* webkitgtk: an out-of-bounds read when processing malicious content (CVE-2023-28204)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-devel-2.38.5-1.el8_8.4.aarch64.rpm	1ed443961fa6e9d732193057fdc3ae5e8a802790c624e3a35dcc33b656bb6020
aarch64	webkit2gtk3-jsc-devel-2.38.5-1.el8_8.4.aarch64.rpm	9e9566a12b6aed5ce0a334a922ba13914f0fbc8024e36d3af72e2ebe94d6f0ce
aarch64	webkit2gtk3-2.38.5-1.el8_8.4.aarch64.rpm	c7258d745a99a7d26dc24256a314782c39b08b50b6beb1abe1b1f704c8272d6b
aarch64	webkit2gtk3-jsc-2.38.5-1.el8_8.4.aarch64.rpm	f7da15fbd391efc8fd8c69e9437b6f3a4592e5f9d43e3b1d7c5003df6d6dce19
i686	webkit2gtk3-jsc-2.38.5-1.el8_8.4.i686.rpm	31b2edc7d8a5a05a3974bc8d5f871893ecc182cf07b68f3e1b4595b62f54bdb4
i686	webkit2gtk3-2.38.5-1.el8_8.4.i686.rpm	6af4a915d584a0fa0701abd91821c80b3c0475f0c29fb8f0fef8b8bb6ec2d0be
i686	webkit2gtk3-jsc-devel-2.38.5-1.el8_8.4.i686.rpm	c7d140d19b668c3557a26cb76c44eddb931b10666b4850ffff8e1d5d7728b680
i686	webkit2gtk3-devel-2.38.5-1.el8_8.4.i686.rpm	e33f6534be64acc2f2de46003c33ec3d9165235478821d488e4b0f96d08cdf6f
ppc64le	webkit2gtk3-2.38.5-1.el8_8.4.ppc64le.rpm	268d46f229bd813ab4afe6965684c1fd8a609100f52d0898b789f44c5357b5e9
ppc64le	webkit2gtk3-jsc-devel-2.38.5-1.el8_8.4.ppc64le.rpm	cd901cbc9a6593da1999ae6ecb2314c948aaab130220e8d32df9c7f03047e1b9
ppc64le	webkit2gtk3-jsc-2.38.5-1.el8_8.4.ppc64le.rpm	cf2d17f54f240fc3fe02eb5fa7f438156c52cec09c3bc92813f581b608f0d46b
ppc64le	webkit2gtk3-devel-2.38.5-1.el8_8.4.ppc64le.rpm	d9d3808e91e10f84e0373943fb551ff81b6dcaf400c14ccb99b2c0b6ad1aaac4
s390x	webkit2gtk3-devel-2.38.5-1.el8_8.4.s390x.rpm	379ddfa6d07aea3c9b4a7e012f72be1ac58036feaaeafdddc98665d13f3bd976
s390x	webkit2gtk3-jsc-devel-2.38.5-1.el8_8.4.s390x.rpm	54b66cbe5f5542888a0e316fb172d48e454ddbe677da7f73d133cbb919e7f370
s390x	webkit2gtk3-2.38.5-1.el8_8.4.s390x.rpm	61511d12f6daa3e7de223a5ca4413af44e23b406d220b7b68bc7d366d73718d1
s390x	webkit2gtk3-jsc-2.38.5-1.el8_8.4.s390x.rpm	9b92c11babb422e7b1fec8da7d25fe7869944959e216d3b2d1ba5f620a386b9e
x86_64	webkit2gtk3-jsc-devel-2.38.5-1.el8_8.4.x86_64.rpm	0d954afc286fc8a3e7babad4ed3f85350c35a5705135bd25cd54ad49105e4d0b
x86_64	webkit2gtk3-2.38.5-1.el8_8.4.x86_64.rpm	3054ed6bcb82d67c08bb76315635c04361e92eb704b912a764fd26bb04b827ca
x86_64	webkit2gtk3-devel-2.38.5-1.el8_8.4.x86_64.rpm	b0a86a470a0dd7f3019ee1458a8f9a24b44f66058b5cde5ab7bc2874b55d941c
x86_64	webkit2gtk3-jsc-2.38.5-1.el8_8.4.x86_64.rpm	bbcb80a8143a8b0e11079c92a9e497fb742cec8996a8eadb2e31808fe72833ac

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.