UbuntuUpdates.org

Package "gir1.2-webkit2-4.0"

Name: gir1.2-webkit2-4.0

Description:

Web content engine library for GTK - GObject introspection data

Latest version: 2.28.2-0ubuntu0.19.10.1
Release: eoan (19.10)
Level: security
Repository: main
Head package: webkit2gtk
Homepage: https://webkitgtk.org/

Links


Download "gir1.2-webkit2-4.0"


Other versions of "gir1.2-webkit2-4.0" in Eoan

Repository Area Version
base main 2.26.1-3
updates main 2.28.2-0ubuntu0.19.10.1

Changelog

Version: 2.28.2-0ubuntu0.19.10.1 2020-04-29 15:28:15 UTC

  webkit2gtk (2.28.2-0ubuntu0.19.10.1) eoan-security; urgency=medium

  * Updated to 2.28.2 to fix security issue.
    - CVE-2020-3899

 -- Marc Deslauriers <email address hidden> Tue, 28 Apr 2020 11:25:00 -0400

Source diff to previous version
CVE-2020-3899 A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTun

Version: 2.28.1-0ubuntu0.19.10.1 2020-04-20 14:06:36 UTC

  webkit2gtk (2.28.1-0ubuntu0.19.10.1) eoan-security; urgency=medium

  * Updated to 2.28.1 to fix security issue.
    - CVE-2020-11793
  * debian/patches/upstream_archs_fix.patch: removed, no longer needed.

 -- Marc Deslauriers <email address hidden> Thu, 16 Apr 2020 08:57:08 -0400

Source diff to previous version
CVE-2020-11793 A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute

Version: 2.28.0-0ubuntu0.19.10.2 2020-03-30 14:06:37 UTC

  webkit2gtk (2.28.0-0ubuntu0.19.10.2) eoan-security; urgency=medium

  * Updated to 2.28.0 to fix security issue.
    - debian/patches/*, debian/*.symbols: updated for 2.28.0.
    - CVE-2020-10018
  * debian/patches/upstream_archs_fix.patch:
    - workaround a regression on ppc64el, the fix is a temporary hackish
      solution until upstreams comes with a proper one.

 -- Marc Deslauriers <email address hidden> Wed, 25 Mar 2020 12:48:08 -0400

Source diff to previous version
CVE-2020-10018 WebKitGTK through 2.26.4 and WPE WebKit through 2.26.4 (which are the versions right before 2.28.0) contains a memory corruption issue (use-after-fre

Version: 2.26.4-0ubuntu0.19.10.1 2020-02-18 14:07:46 UTC

  webkit2gtk (2.26.4-0ubuntu0.19.10.1) eoan-security; urgency=medium

  * Updated to 2.26.4 to fix security issues.
    - CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867,
      CVE-2020-3868

 -- Marc Deslauriers <email address hidden> Fri, 14 Feb 2020 14:23:31 -0500

Source diff to previous version

Version: 2.26.3-0ubuntu0.19.10.1 2020-01-29 21:07:25 UTC

  webkit2gtk (2.26.3-0ubuntu0.19.10.1) eoan-security; urgency=medium

  * Updated to 2.26.3 to fix security issues.
    - CVE-2019-8835, CVE-2019-8844, CVE-2019-8846

 -- Marc Deslauriers <email address hidden> Tue, 28 Jan 2020 12:55:35 -0500




About   -   Send Feedback to @ubuntu_updates