UbuntuUpdates.org

Package "libwebkit2gtk-4.0-37"

Name: libwebkit2gtk-4.0-37

Description:

Web content engine library for GTK+

Latest version: 2.28.2-0ubuntu0.18.04.1
Release: bionic (18.04)
Level: updates
Repository: main
Head package: webkit2gtk
Homepage: https://webkitgtk.org/

Links


Download "libwebkit2gtk-4.0-37"


Other versions of "libwebkit2gtk-4.0-37" in Bionic

Repository Area Version
base main 2.20.1-1
security main 2.28.2-0ubuntu0.18.04.1

Changelog

Version: 2.28.2-0ubuntu0.18.04.1 2020-04-29 16:07:38 UTC

  webkit2gtk (2.28.2-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.28.2 to fix security issue.
    - CVE-2020-3899

 -- Marc Deslauriers <email address hidden> Tue, 28 Apr 2020 14:46:46 -0400

Source diff to previous version
CVE-2020-3899 A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTun

Version: 2.28.1-0ubuntu0.18.04.1 2020-04-20 14:06:32 UTC

  webkit2gtk (2.28.1-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.28.1 to fix security issue.
    - CVE-2020-11793
  * debian/patches/upstream_archs_fix.patch: removed, no longer needed.

 -- Marc Deslauriers <email address hidden> Thu, 16 Apr 2020 11:29:02 -0400

Source diff to previous version
CVE-2020-11793 A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute

Version: 2.28.0-0ubuntu0.18.04.3 2020-03-30 15:06:35 UTC

  webkit2gtk (2.28.0-0ubuntu0.18.04.3) bionic-security; urgency=medium

  * Updated to 2.28.0 to fix security issue.
    - debian/patches/*, debian/*.symbols: updated for 2.28.0.
    - CVE-2020-10018
  * debian/patches/upstream_archs_fix.patch:
    - workaround a regression on ppc64el, the fix is a temporary hackish
      solution until upstreams comes with a proper one.
  * debian/patches/work-around-gcc-7-ice.patch:
    - workaround FTBFS caused by ICE in gcc-7 update in bionic.
  * debian/rules:
    - disable debug packages on ppc64el to fix build issues.

 -- Marc Deslauriers <email address hidden> Thu, 26 Mar 2020 11:46:35 -0400

Source diff to previous version
CVE-2020-10018 WebKitGTK through 2.26.4 and WPE WebKit through 2.26.4 (which are the versions right before 2.28.0) contains a memory corruption issue (use-after-fre

Version: 2.26.4-0ubuntu0.18.04.1 2020-02-18 15:07:11 UTC

  webkit2gtk (2.26.4-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.26.4 to fix security issues.
    - CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867,
      CVE-2020-3868

 -- Marc Deslauriers <email address hidden> Fri, 14 Feb 2020 14:25:54 -0500

Source diff to previous version

Version: 2.26.3-0ubuntu0.18.04.1 2020-01-29 21:07:22 UTC

  webkit2gtk (2.26.3-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.26.3 to fix security issues.
    - CVE-2019-8835, CVE-2019-8844, CVE-2019-8846

 -- Marc Deslauriers <email address hidden> Tue, 28 Jan 2020 12:57:43 -0500




About   -   Send Feedback to @ubuntu_updates