UbuntuUpdates.org

Package "webkit2gtk"

Name: webkit2gtk

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • JavaScript engine library from WebKitGTK - command-line interpreter
  • WebKitGTK WebDriver support

Latest version: 2.34.3-0ubuntu0.21.10.1
Release: impish (21.10)
Level: updates
Repository: universe

Links



Other versions of "webkit2gtk" in Impish

Repository Area Version
base main 2.34.0-1ubuntu1
base universe 2.34.0-1ubuntu1
security main 2.34.3-0ubuntu0.21.10.1
security universe 2.34.3-0ubuntu0.21.10.1
updates main 2.34.3-0ubuntu0.21.10.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.34.3-0ubuntu0.21.10.1 2022-01-06 17:06:43 UTC

  webkit2gtk (2.34.3-0ubuntu0.21.10.1) impish-security; urgency=medium

  * Updated to 2.34.3 to fix security issues.
    - CVE-2021-30887
    - CVE-2021-30890

 -- Marc Deslauriers <email address hidden> Wed, 05 Jan 2022 12:06:34 -0500

Source diff to previous version
CVE-2021-30887 A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.
CVE-2021-30890 A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS

Version: 2.34.1-0ubuntu0.21.10.1 2021-11-01 16:06:22 UTC

  webkit2gtk (2.34.1-0ubuntu0.21.10.1) impish-security; urgency=medium

  * Updated to 2.34.1 to fix security issue.
    - CVE-2021-42762
  * debian/libwebkit2gtk-4.0-37.symbols: removed outdated symbol.

 -- Marc Deslauriers <email address hidden> Wed, 27 Oct 2021 09:37:26 -0400

CVE-2021-42762 BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host proces



About   -   Send Feedback to @ubuntu_updates