You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa webkit2gtk

Sigurnosni nedostaci programskog paketa webkit2gtk

by - 0

==========================================================================
Ubuntu Security Notice USN-4181-1
November 12, 2019

webkit2gtk vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.10
– Ubuntu 19.04
– Ubuntu 18.04 LTS

Summary:

Several security issues were fixed in WebKitGTK+.

Software Description:
– webkit2gtk: Web content engine library for GTK+

Details:

A large number of security issues were discovered in the WebKitGTK+ Web and
JavaScript engines. If a user were tricked into viewing a malicious
website, a remote attacker could exploit a variety of issues related to web
browser security, including cross-site scripting attacks, denial of service
attacks, and arbitrary code execution.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.10:
libjavascriptcoregtk-4.0-18 2.26.2-0ubuntu0.19.10.1
libwebkit2gtk-4.0-37 2.26.2-0ubuntu0.19.10.1

Ubuntu 19.04:
libjavascriptcoregtk-4.0-18 2.26.2-0ubuntu0.19.04.1
libwebkit2gtk-4.0-37 2.26.2-0ubuntu0.19.04.1

Ubuntu 18.04 LTS:
libjavascriptcoregtk-4.0-18 2.26.2-0ubuntu0.18.04.1
libwebkit2gtk-4.0-37 2.26.2-0ubuntu0.18.04.1

This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart any applications
that use WebKitGTK+, such as Epiphany, to make all the necessary changes.

References:
https://usn.ubuntu.com/4181-1
CVE-2019-8812, CVE-2019-8814

Package Information:
https://launchpad.net/ubuntu/+source/webkit2gtk/2.26.2-0ubuntu0.19.10.1
https://launchpad.net/ubuntu/+source/webkit2gtk/2.26.2-0ubuntu0.19.04.1
https://launchpad.net/ubuntu/+source/webkit2gtk/2.26.2-0ubuntu0.18.04.1

—–BEGIN PGP SIGNATURE—–
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=j8Nj
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostaci jezgre operacijskog sustava

Otkriveni su sigurnosni nedostaci jezgre operacijskog sustava Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja, izvršavanje proizvoljnog programskog koda,...

Close