UbuntuUpdates.org

Package "libjavascriptcoregtk-4.0-bin"

Name: libjavascriptcoregtk-4.0-bin

Description:

JavaScript engine library from WebKitGTK+ - command-line interpreter
Latest version: 2.32.4-0ubuntu0.18.04.1
Release: bionic (18.04)
Level: security
Repository: universe
Head package: webkit2gtk
Homepage: https://webkitgtk.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libjavascriptcoregtk-4.0-bin"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libjavascriptcoregtk-4.0-bin" in Bionic

Repository Area Version
base universe 2.20.1-1
updates universe 2.32.4-0ubuntu0.18.04.1

Changelog

Version: 2.32.4-0ubuntu0.18.04.1 2021-09-22 17:06:46 UTC

  webkit2gtk (2.32.4-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.32.4 to fix security issues.
    - CVE-2021-30858

 -- Marc Deslauriers <email address hidden> Tue, 21 Sep 2021 09:13:58 -0400
Source diff to previous version
CVE-2021-30858 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6. Processing

Version: 2.32.3-0ubuntu0.18.04.1 2021-07-28 18:06:20 UTC

  webkit2gtk (2.32.3-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.32.3 to fix security issues.
    - CVE-2021-21775, CVE-2021-21779, CVE-2021-30663, CVE-2021-30665,
      CVE-2021-30689, CVE-2021-30720, CVE-2021-30734, CVE-2021-30744,
      CVE-2021-30749, CVE-2021-30758, CVE-2021-30795, CVE-2021-30797,
      CVE-2021-30799

 -- Marc Deslauriers <email address hidden> Tue, 27 Jul 2021 07:21:42 -0400
Source diff to previous version
CVE-2021-21775 A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted
CVE-2021-21779 A use-after-free vulnerability exists in the way Webkit’s GraphicsContext handles certain events in WebKitGTK 2.30.4. A specially crafted web page ca

Version: 2.32.0-0ubuntu0.18.04.1 2021-05-10 12:06:21 UTC

  webkit2gtk (2.32.0-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.32.0 to fix security issues.
    - sync patches and some packaging changes from 2.32.0-1ubuntu3
    - debian/rules: don't build in parallel on arm64 to prevent hitting
      memory limits on the builders.
    - debian/rules, debian/control: switch to ninja to prevent race when
      disabling parallel builds.
    - debian/rules: don't force disable JIT, let webkit decide on which
      platforms it works.
    - debian/rules:
    - CVE-2021-1788, CVE-2021-1844, CVE-2021-1871

 -- Marc Deslauriers <email address hidden> Fri, 07 May 2021 08:59:59 -0400
Source diff to previous version
CVE-2021-1788 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, S
CVE-2021-1844 A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. 14610.4.3.1.
CVE-2021-1871 A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update

Version: 2.30.6-0ubuntu0.18.04.1 2021-03-29 15:06:21 UTC

  webkit2gtk (2.30.6-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.30.6 to fix security issues.
    - CVE-2020-27918, CVE-2020-29623, CVE-2021-1765, CVE-2021-1789,
      CVE-2021-1799, CVE-2021-1801, CVE-2021-1870

 -- Marc Deslauriers <email address hidden> Fri, 26 Mar 2021 11:18:43 -0400
Source diff to previous version
CVE-2020-27918 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.1, iOS 14.2 and iPadOS 1

Version: 2.30.5-0ubuntu0.18.04.1 2021-02-18 14:06:21 UTC

  webkit2gtk (2.30.5-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.30.5 to fix security issues.
    - CVE-2020-13558

 -- Marc Deslauriers <email address hidden> Mon, 15 Feb 2021 11:18:21 -0500


About   -   Send Feedback to @ubuntu_updates