UbuntuUpdates.org

Package "libjavascriptcoregtk-bin"

Name: libjavascriptcoregtk-bin

Description:

JavaScript engine library from WebKitGTK - command-line interpreter
Latest version: 2.46.6-0ubuntu0.24.04.1
Release: noble (24.04)
Level: security
Repository: universe
Head package: webkit2gtk
Homepage: https://webkitgtk.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libjavascriptcoregtk-bin"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libjavascriptcoregtk-bin" in Noble

Repository Area Version
base universe 2.44.0-2
updates universe 2.46.6-0ubuntu0.24.04.1

Changelog

Version: 2.46.6-0ubuntu0.24.04.1 2025-02-20 23:07:31 UTC

  webkit2gtk (2.46.6-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Update to 2.46.6 to fix security issues.
    - debian/patches/disable-nvidia-dmabuf.patch: updated for new version
    - CVE-2025-24143
    - CVE-2025-24150
    - CVE-2025-24158
    - CVE-2025-24162

 -- Marc Deslauriers <email address hidden> Tue, 11 Feb 2025 10:49:09 -0500
Source diff to previous version
CVE-2025-24143 The issue was addressed with improved access restrictions to the file system. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iP
CVE-2025-24150 A privacy issue was addressed with improved handling of files. This issue is fixed in macOS Sequoia 15.3, Safari 18.3, iOS 18.3 and iPadOS 18.3. Copy
CVE-2025-24158 The issue was addressed with improved memory handling. This issue is fixed in visionOS 2.3, Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3
CVE-2025-24162 This issue was addressed through improved state management. This issue is fixed in visionOS 2.3, Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia

Version: 2.46.5-0ubuntu0.24.04.1 2025-01-14 22:06:50 UTC

  webkit2gtk (2.46.5-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Update to 2.46.5 to fix security issues.
    - CVE-2024-54479
    - CVE-2024-54502
    - CVE-2024-54505
    - CVE-2024-54508

 -- Marc Deslauriers <email address hidden> Mon, 06 Jan 2025 07:34:35 -0500
Source diff to previous version
CVE-2024-54479 The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, Safari
CVE-2024-54502 The issue was addressed with improved checks. This issue is fixed in watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, Safari 18.2, iOS 18.2
CVE-2024-54505 A type confusion issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, visionOS 2.2, tvOS 18.2, macO
CVE-2024-54508 The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, Safari 18.2,

Version: 2.46.4-0ubuntu0.24.04.1 2024-12-09 15:06:52 UTC

  webkit2gtk (2.46.4-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Update to 2.46.4 to fix security issues.
    - CVE-2024-44308
    - CVE-2024-44309

 -- Marc Deslauriers <email address hidden> Tue, 03 Dec 2024 07:22:22 -0500
Source diff to previous version
CVE-2024-44308 The issue was addressed with improved checks. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Sequoia 15.1.1, iOS 18.1.1 an
CVE-2024-44309 A cookie management issue was addressed with improved state management. This issue is fixed in Safari 18.1.1, iOS 17.7.2 and iPadOS 17.7.2, macOS Seq

Version: 2.46.3-0ubuntu0.24.04.1 2024-11-18 19:07:20 UTC

  webkit2gtk (2.46.3-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Update to 2.46.3 to fix security issues.
    - debian/control-common.in: no longer mark -dev packages as Multi-Arch:
      same because they are now different on s390x.
    - CVE-2024-44244
    - CVE-2024-44296

 -- Marc Deslauriers <email address hidden> Wed, 13 Nov 2024 09:09:02 -0500
Source diff to previous version
CVE-2024-44244 A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 18.1 and iPadOS 18.1, watchOS 11.1, visionOS 2.1,
CVE-2024-44296 The issue was addressed with improved checks. This issue is fixed in tvOS 18.1, iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, watchOS 11.1,

Version: 2.46.1-0ubuntu0.24.04.1 2024-10-22 16:06:56 UTC

  webkit2gtk (2.46.1-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Build 2.46.1 for noble to fix security issues.
    - debian/rules: set USE_OLD_WEBDRIVER_PKG=YES.
    - CVE-2024-40866
    - CVE-2024-44187

 -- Marc Deslauriers <email address hidden> Tue, 08 Oct 2024 11:24:41 -0400
CVE-2024-40866 The issue was addressed with improved UI. This issue is fixed in Safari 18, macOS Sequoia 15. Visiting a malicious website may lead to address bar sp
CVE-2024-44187 A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18,


About   -   Send Feedback to @ubuntu_updates