Security update for webkit2gtk3 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:2345-1 Final 1 1 2019-09-10T11:30:07Z current 2019-09-10T11:30:07Z 2019-09-10T11:30:07Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: Updated to version 2.24.4 (bsc#1148931). Security issues fixed: - CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, CVE-2019-8688, CVE-2019-8595, CVE-2019-8607, CVE-2019-8615, CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673, CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680, CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8686, CVE-2019-8687, CVE-2019-8688, CVE-2019-8689, CVE-2019-8690 Non-security issues fixed: - Improved loading of multimedia streams to avoid memory exhaustion due to excessive caching. - Updated the user agent string to make happy certain websites which would claim that the browser being used was unsupported. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2019-2345,SUSE-SLE-DESKTOP-12-SP4-2019-2345,SUSE-SLE-SDK-12-SP4-2019-2345,SUSE-SLE-SERVER-12-SP4-2019-2345,SUSE-SLE-WE-12-SP4-2019-2345 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ Link for SUSE-SU-2019:2345-1 https://lists.suse.com/pipermail/sle-security-updates/2019-September/005904.html E-Mail link for SUSE-SU-2019:2345-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1135715 SUSE Bug 1135715 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 https://www.suse.com/security/cve/CVE-2019-8595/ SUSE CVE CVE-2019-8595 page https://www.suse.com/security/cve/CVE-2019-8607/ SUSE CVE CVE-2019-8607 page https://www.suse.com/security/cve/CVE-2019-8615/ SUSE CVE CVE-2019-8615 page https://www.suse.com/security/cve/CVE-2019-8644/ SUSE CVE CVE-2019-8644 page https://www.suse.com/security/cve/CVE-2019-8649/ SUSE CVE CVE-2019-8649 page https://www.suse.com/security/cve/CVE-2019-8658/ SUSE CVE CVE-2019-8658 page https://www.suse.com/security/cve/CVE-2019-8666/ SUSE CVE CVE-2019-8666 page https://www.suse.com/security/cve/CVE-2019-8669/ SUSE CVE CVE-2019-8669 page https://www.suse.com/security/cve/CVE-2019-8671/ SUSE CVE CVE-2019-8671 page https://www.suse.com/security/cve/CVE-2019-8672/ SUSE CVE CVE-2019-8672 page https://www.suse.com/security/cve/CVE-2019-8673/ SUSE CVE CVE-2019-8673 page https://www.suse.com/security/cve/CVE-2019-8676/ SUSE CVE CVE-2019-8676 page https://www.suse.com/security/cve/CVE-2019-8677/ SUSE CVE CVE-2019-8677 page https://www.suse.com/security/cve/CVE-2019-8678/ SUSE CVE CVE-2019-8678 page https://www.suse.com/security/cve/CVE-2019-8679/ SUSE CVE CVE-2019-8679 page https://www.suse.com/security/cve/CVE-2019-8680/ SUSE CVE CVE-2019-8680 page https://www.suse.com/security/cve/CVE-2019-8681/ SUSE CVE CVE-2019-8681 page https://www.suse.com/security/cve/CVE-2019-8683/ SUSE CVE CVE-2019-8683 page https://www.suse.com/security/cve/CVE-2019-8684/ SUSE CVE CVE-2019-8684 page https://www.suse.com/security/cve/CVE-2019-8686/ SUSE CVE CVE-2019-8686 page https://www.suse.com/security/cve/CVE-2019-8687/ SUSE CVE CVE-2019-8687 page https://www.suse.com/security/cve/CVE-2019-8688/ SUSE CVE CVE-2019-8688 page https://www.suse.com/security/cve/CVE-2019-8689/ SUSE CVE CVE-2019-8689 page https://www.suse.com/security/cve/CVE-2019-8690/ SUSE CVE CVE-2019-8690 page SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP4 libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 libjavascriptcoregtk-4_0-18-32bit-2.24.4-2.47.1 libjavascriptcoregtk-4_0-18-64bit-2.24.4-2.47.1 libwebkit2gtk-4_0-37-2.24.4-2.47.1 libwebkit2gtk-4_0-37-32bit-2.24.4-2.47.1 libwebkit2gtk-4_0-37-64bit-2.24.4-2.47.1 libwebkit2gtk3-lang-2.24.4-2.47.1 typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 webkit-jsc-4-2.24.4-2.47.1 webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 webkit2gtk3-devel-2.24.4-2.47.1 webkit2gtk3-minibrowser-2.24.4-2.47.1 libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libwebkit2gtk-4_0-37-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libwebkit2gtk3-lang-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Desktop 12 SP4 libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 libwebkit2gtk-4_0-37-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 libwebkit2gtk3-lang-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server 12 SP4 libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libwebkit2gtk-4_0-37-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libwebkit2gtk3-lang-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP4 webkit2gtk3-devel-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP4 libwebkit2gtk3-lang-2.24.4-2.47.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP4 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8595 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 low 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8595.html CVE-2019-8595 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may result in the disclosure of process memory. CVE-2019-8607 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 low 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8607.html CVE-2019-8607 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8615 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 low 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8615.html CVE-2019-8615 https://bugzilla.suse.com/1135715 SUSE Bug 1135715 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8644 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8644.html CVE-2019-8644 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue existed in the handling of synchronous page loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8649 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8649.html CVE-2019-8649 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8658 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8658.html CVE-2019-8658 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8666 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8666.html CVE-2019-8666 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8669 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8669.html CVE-2019-8669 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8671 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8671.html CVE-2019-8671 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8672 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8672.html CVE-2019-8672 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8673 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8673.html CVE-2019-8673 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8676 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8676.html CVE-2019-8676 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8677 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8677.html CVE-2019-8677 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8678 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8678.html CVE-2019-8678 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8679 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8679.html CVE-2019-8679 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8680 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8680.html CVE-2019-8680 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8681 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8681.html CVE-2019-8681 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8683 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8683.html CVE-2019-8683 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8684 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8684.html CVE-2019-8684 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8686 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8686.html CVE-2019-8686 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8687 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8687.html CVE-2019-8687 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8688 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8688.html CVE-2019-8688 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution. CVE-2019-8689 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8689.html CVE-2019-8689 https://bugzilla.suse.com/1148931 SUSE Bug 1148931 A logic issue existed in the handling of document loads. This issue was addressed with improved state management. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to universal cross site scripting. CVE-2019-8690 SUSE Linux Enterprise Desktop 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Desktop 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 SUSE Linux Enterprise Software Development Kit 12 SP4:webkit2gtk3-devel-2.24.4-2.47.1 SUSE Linux Enterprise Workstation Extension 12 SP4:libwebkit2gtk3-lang-2.24.4-2.47.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20192345-1/ https://www.suse.com/security/cve/CVE-2019-8690.html CVE-2019-8690 https://bugzilla.suse.com/1148931 SUSE Bug 1148931