SUSE Linux Enterprise Server 15 update for webkit



Published: 2021-10-04 | Updated: 2021-11-01
Risk Critical
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2021-21806
CVE-2021-30858
CWE-ID CWE-416
Exploitation vector Network
Public exploit Public exploit code for vulnerability #1 is available.
Vulnerability #2 is being exploited in the wild.
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server
Operating systems & Components / Operating system

Vendor SuSE

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Use-after-free

EUVDB-ID: #VU53781

Risk: High

CVSSv3.1:

CVE-ID: CVE-2021-21806

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content. A remote attacker can create a specially crafted web page, trick the victim into opening it, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Mitigation

Install update from vendor's website.

  • SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15-SP1 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-BCL (x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-BCL (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Enterprise Storage 6 (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Enterprise Storage 6 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE CaaS Platform 4.0 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE CaaS Platform 4.0 (x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1

Vulnerable software versions

SUSE Linux Enterprise Server: 15-LTSS - 15-SP1-LTSS

CPE2.3 External links

http://www.suse.com/support/update/announcement/2021/suse-su-20213282-1/

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Use-after-free

EUVDB-ID: #VU56475

Risk: Critical

CVSSv3.1:

CVE-ID: CVE-2021-30858

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content in WebKit. A remote attacker can trick the victim to visit a specially crafted web page, trigger a use-after-free error and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

Note, the vulnerability is being actively exploited in-the-wild.

Mitigation

Install update from vendor's website.

  • SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15-SP1 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server for SAP 15 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-BCL (x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-SP1-BCL (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise Server 15-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE Enterprise Storage 6 (aarch64 x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1
  • SUSE Enterprise Storage 6 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE CaaS Platform 4.0 (noarch):
    • libwebkit2gtk3-lang-2.32.4-3.82.1
  • SUSE CaaS Platform 4.0 (x86_64):
    • libjavascriptcoregtk-4_0-18-2.32.4-3.82.1
    • libjavascriptcoregtk-4_0-18-debuginfo-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-2.32.4-3.82.1
    • libwebkit2gtk-4_0-37-debuginfo-2.32.4-3.82.1
    • typelib-1_0-JavaScriptCore-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2-4_0-2.32.4-3.82.1
    • typelib-1_0-WebKit2WebExtension-4_0-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-2.32.4-3.82.1
    • webkit2gtk-4_0-injected-bundles-debuginfo-2.32.4-3.82.1
    • webkit2gtk3-debugsource-2.32.4-3.82.1
    • webkit2gtk3-devel-2.32.4-3.82.1

Vulnerable software versions

SUSE Linux Enterprise Server: 15-LTSS - 15-SP1-LTSS

CPE2.3 External links

http://www.suse.com/support/update/announcement/2021/suse-su-20213282-1/

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###