UbuntuUpdates.org

Package "webkit2gtk"

Name: webkit2gtk

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • JavaScript engine library from WebKitGTK+ - command-line interpreter
  • Transitional dummy package
  • WebKitGTK+ WebDriver support

Latest version: 2.26.2-0ubuntu0.18.04.1
Release: bionic (18.04)
Level: security
Repository: universe

Links

Save this URL for the latest version of "webkit2gtk": https://www.ubuntuupdates.org/webkit2gtk



Other versions of "webkit2gtk" in Bionic

Repository Area Version
base main 2.20.1-1
base universe 2.20.1-1
security main 2.26.2-0ubuntu0.18.04.1
updates universe 2.26.2-0ubuntu0.18.04.1
updates main 2.26.2-0ubuntu0.18.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.26.2-0ubuntu0.18.04.1 2019-11-12 19:06:19 UTC

  webkit2gtk (2.26.2-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.26.2 to fix security issues.
    - CVE-2019-8812, CVE-2019-8814

 -- Marc Deslauriers <email address hidden> Fri, 08 Nov 2019 12:16:03 -0500

Source diff to previous version
CVE-2019-8812 RESERVED
CVE-2019-8814 RESERVED

Version: 2.26.1-0ubuntu0.18.04.1 2019-11-07 15:06:58 UTC

  webkit2gtk (2.26.1-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.26.1 to fix security issues.
    - CVE-2019-8625, CVE-2019-8720, CVE-2019-8769, CVE-2019-8771
  * debian/patches/*patch: Refreshed patches from 2.26.1-2.
  * debian/libwebkit2gtk-4.0-37.symbols: Updated for new version.
  * debian/patches/force-single-process.patch: add workaround for geary and
    evolution.
  * debian/rules: build with -DUSE_WPE_RENDERER=OFF and
    -DENABLE_BUBBLEWRAP_SANDBOX=OFF as required dependencies are not
    available.
  * Remove gtk2 support no longer available
    - debian/control: remove libgtk2.0-dev from Build-Depends, switch
      libwebkit2gtk-4.0-37-gtk2 to a transitional package.
    - debian/libwebkit2gtk-4.0-37-gtk2.NEWS: added information.
    - debian/libwebkit2gtk-4.0-37-gtk2.install: removed.

 -- Marc Deslauriers <email address hidden> Mon, 04 Nov 2019 14:37:08 -0500

Source diff to previous version

Version: 2.24.4-0ubuntu0.18.04.1 2019-09-11 18:07:08 UTC
No changelog available yet.
Source diff to previous version

Version: 2.24.2-0ubuntu0.18.04.1 2019-05-22 13:06:30 UTC

  webkit2gtk (2.24.2-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.24.2 to fix security issues.
    - CVE-2019-8595, CVE-2019-8607, CVE-2019-8615
  * debian/libwebkit2gtk-4.0-37.symbols: updated for new version.

 -- Marc Deslauriers <email address hidden> Tue, 21 May 2019 19:05:37 -0400

Source diff to previous version

Version: 2.24.1-0ubuntu0.18.04.1 2019-04-16 15:06:37 UTC

  webkit2gtk (2.24.1-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * Updated to 2.24.1 to fix security issues.
    - CVE-2019-6251, CVE-2019-8375, CVE-2019-8506, CVE-2019-8518,
      CVE-2019-8523, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536,
      CVE-2019-8544, CVE-2019-8551, CVE-2019-8558, CVE-2019-8559,
      CVE-2019-8563, CVE-2019-11070
  * debian/patches/*.patch: refreshed.
  * debian/rules: don't build with openjpeg (in universe).
  * debian/rules: build i386 with SSE2.
  * debian/rules: build armhf with -O1.
  * debian/libwebkit2gtk-4.0-37.symbols: updated for new version.

 -- Marc Deslauriers <email address hidden> Mon, 15 Apr 2019 13:23:30 -0400

CVE-2019-6251 embed/ephy-web-view.c in GNOME Web (aka Epiphany) through 3.31.4 allows address bar spoofing because a page load triggered by JavaScript leads to upd
CVE-2019-8375 The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent the script
CVE-2019-11070 WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH



About   -   Send Feedback to @ubuntu_updates