Security update for webkit2gtk3 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:2207-1 Final 1 1 2019-09-28T12:20:53Z current 2019-09-28T12:20:53Z 2019-09-28T12:20:53Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: Security issues fixed: - CVE-2019-8673, CVE-2019-8678, CVE-2019-8686, CVE-2019-8683, CVE-2019-8671, CVE-2019-8595, CVE-2019-8684, CVE-2019-8681, CVE-2019-8615, CVE-2019-8689, CVE-2019-8680, CVE-2019-8672, CVE-2019-8676, CVE-2019-8666, CVE-2019-8644, CVE-2019-8658, CVE-2019-8690, CVE-2019-8688, CVE-2019-8649, CVE-2019-8679, CVE-2019-8687, CVE-2019-8669, CVE-2019-8677, CVE-2019-8607 (bsc#1148931). This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-2207 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html E-Mail link for openSUSE-SU-2019:2207-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1148931 SUSE Bug 1148931 https://www.suse.com/security/cve/CVE-2019-8595/ SUSE CVE CVE-2019-8595 page https://www.suse.com/security/cve/CVE-2019-8607/ SUSE CVE CVE-2019-8607 page https://www.suse.com/security/cve/CVE-2019-8615/ SUSE CVE CVE-2019-8615 page https://www.suse.com/security/cve/CVE-2019-8644/ SUSE CVE CVE-2019-8644 page https://www.suse.com/security/cve/CVE-2019-8649/ SUSE CVE CVE-2019-8649 page https://www.suse.com/security/cve/CVE-2019-8658/ SUSE CVE CVE-2019-8658 page https://www.suse.com/security/cve/CVE-2019-8666/ SUSE CVE CVE-2019-8666 page https://www.suse.com/security/cve/CVE-2019-8669/ SUSE CVE CVE-2019-8669 page https://www.suse.com/security/cve/CVE-2019-8671/ SUSE CVE CVE-2019-8671 page https://www.suse.com/security/cve/CVE-2019-8672/ SUSE CVE CVE-2019-8672 page https://www.suse.com/security/cve/CVE-2019-8673/ SUSE CVE CVE-2019-8673 page https://www.suse.com/security/cve/CVE-2019-8676/ SUSE CVE CVE-2019-8676 page https://www.suse.com/security/cve/CVE-2019-8677/ SUSE CVE CVE-2019-8677 page https://www.suse.com/security/cve/CVE-2019-8678/ SUSE CVE CVE-2019-8678 page https://www.suse.com/security/cve/CVE-2019-8679/ SUSE CVE CVE-2019-8679 page https://www.suse.com/security/cve/CVE-2019-8680/ SUSE CVE CVE-2019-8680 page https://www.suse.com/security/cve/CVE-2019-8681/ SUSE CVE CVE-2019-8681 page https://www.suse.com/security/cve/CVE-2019-8683/ SUSE CVE CVE-2019-8683 page https://www.suse.com/security/cve/CVE-2019-8684/ SUSE CVE CVE-2019-8684 page https://www.suse.com/security/cve/CVE-2019-8686/ SUSE CVE CVE-2019-8686 page https://www.suse.com/security/cve/CVE-2019-8687/ SUSE CVE CVE-2019-8687 page https://www.suse.com/security/cve/CVE-2019-8688/ SUSE CVE CVE-2019-8688 page https://www.suse.com/security/cve/CVE-2019-8689/ SUSE CVE CVE-2019-8689 page https://www.suse.com/security/cve/CVE-2019-8690/ SUSE CVE CVE-2019-8690 page openSUSE Leap 15.0 libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 webkit-jsc-4-2.24.4-lp150.2.25.1 webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 webkit2gtk3-devel-2.24.4-lp150.2.25.1 webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 webkit-jsc-4-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 webkit2gtk3-devel-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 as a component of openSUSE Leap 15.0 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8595 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8595.html CVE-2019-8595 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory. CVE-2019-8607 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8607.html CVE-2019-8607 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8615 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8615.html CVE-2019-8615 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8644 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8644.html CVE-2019-8644 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8649 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8649.html CVE-2019-8649 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8658 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8658.html CVE-2019-8658 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8666 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8666.html CVE-2019-8666 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8669 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8669.html CVE-2019-8669 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8671 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8671.html CVE-2019-8671 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8672 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8672.html CVE-2019-8672 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8673 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8673.html CVE-2019-8673 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8676 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8676.html CVE-2019-8676 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8677 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8677.html CVE-2019-8677 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8678 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8678.html CVE-2019-8678 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8679 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8679.html CVE-2019-8679 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8680 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8680.html CVE-2019-8680 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8681 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8681.html CVE-2019-8681 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8683 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8683.html CVE-2019-8683 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8684 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8684.html CVE-2019-8684 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8686 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8686.html CVE-2019-8686 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8687 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8687.html CVE-2019-8687 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8688 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8688.html CVE-2019-8688 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8689 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8689.html CVE-2019-8689 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8690 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libjavascriptcoregtk-4_0-18-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk-4_0-37-32bit-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:libwebkit2gtk3-lang-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-JavaScriptCore-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit-jsc-4-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk-4_0-injected-bundles-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-devel-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-minibrowser-2.24.4-lp150.2.25.1 openSUSE Leap 15.0:webkit2gtk3-plugin-process-gtk2-2.24.4-lp150.2.25.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-09/msg00083.html https://www.suse.com/security/cve/CVE-2019-8690.html CVE-2019-8690 https://bugzilla.suse.com/1148931 SUSE Bug 1148931