{"affected":[{"ecosystem_specific":{"binaries":[{"typelib-1_0-WebKit2WebExtension-4_0":"2.42.1-2.155.1","webkit2gtk3-devel":"2.42.1-2.155.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP5","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.42.1-2.155.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjavascriptcoregtk-4_0-18":"2.42.1-2.155.1","libwebkit2gtk-4_0-37":"2.42.1-2.155.1","libwebkit2gtk3-lang":"2.42.1-2.155.1","typelib-1_0-JavaScriptCore-4_0":"2.42.1-2.155.1","typelib-1_0-WebKit2-4_0":"2.42.1-2.155.1","typelib-1_0-WebKit2WebExtension-4_0":"2.42.1-2.155.1","webkit2gtk-4_0-injected-bundles":"2.42.1-2.155.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 12 SP5","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.42.1-2.155.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjavascriptcoregtk-4_0-18":"2.42.1-2.155.1","libwebkit2gtk-4_0-37":"2.42.1-2.155.1","libwebkit2gtk3-lang":"2.42.1-2.155.1","typelib-1_0-JavaScriptCore-4_0":"2.42.1-2.155.1","typelib-1_0-WebKit2-4_0":"2.42.1-2.155.1","typelib-1_0-WebKit2WebExtension-4_0":"2.42.1-2.155.1","webkit2gtk-4_0-injected-bundles":"2.42.1-2.155.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.42.1-2.155.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libjavascriptcoregtk-4_0-18-32bit":"2.42.1-2.155.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 12 SP5","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.42.1-2.155.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for webkit2gtk3 fixes the following issues:\n\n- CVE-2023-41993: Fixed an issue where processing malicious web\n  content could have lead to arbitrary code execution (bsc#1215661).\n- CVE-2023-39928: Fixed a use-after-free that could be exploited to\n  execute arbitrary code when visiting a malicious webpage\n  (bsc#1215868).\n- CVE-2023-41074: Fixed an issue where processing malicious web\n  content could have lead to arbitrary code execution (bsc#1215870).\n\nNon-security fixes:\n\n- Fixed missing package dependencies (bsc#1215072).\n","id":"SUSE-SU-2023:4209-1","modified":"2023-10-26T08:24:56Z","published":"2023-10-26T08:24:56Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234209-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1213379"},{"type":"REPORT","url":"https://bugzilla.suse.com/1213581"},{"type":"REPORT","url":"https://bugzilla.suse.com/1213905"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215072"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215661"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215866"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215867"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215868"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215869"},{"type":"REPORT","url":"https://bugzilla.suse.com/1215870"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216483"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-32393"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-35074"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-37450"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-39434"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-39928"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-40451"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-41074"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-41993"}],"related":["CVE-2023-32393","CVE-2023-35074","CVE-2023-37450","CVE-2023-39434","CVE-2023-39928","CVE-2023-40451","CVE-2023-41074","CVE-2023-41993"],"summary":"Security update for webkit2gtk3","upstream":["CVE-2023-32393","CVE-2023-35074","CVE-2023-37450","CVE-2023-39434","CVE-2023-39928","CVE-2023-40451","CVE-2023-41074","CVE-2023-41993"]}