摘要:
webkit2gtk3 security update
安全等级: High
公告ID: KylinSec-SA-2024-3854
发布日期: 2024年8月30日
WebKitGTK is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers. This package contains WebKit2 based WebKitGTK+ for GTK+ 3.
Security Fix(es):
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.(CVE-2024-40779)
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.(CVE-2024-40780)
Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)(CVE-2024-4558)
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-40779 | KY3.5.2 | webkit2gtk3 | Fixed |
| CVE-2024-40779 | V6 | webkit2gtk3 | Fixed |
| CVE-2024-40780 | KY3.5.2 | webkit2gtk3 | Fixed |
| CVE-2024-40780 | V6 | webkit2gtk3 | Fixed |
| CVE-2024-4558 | KY3.5.2 | webkit2gtk3 | Fixed |
| CVE-2024-4558 | V6 | webkit2gtk3 | Fixed |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| webkit2gtk3-help | noarch | 2.38.2-9.ks6 |
| webkit2gtk5.0-help | noarch | 2.38.2-9.ks6 |
| webkit2gtk4.1-help | noarch | 2.38.2-9.ks6 |
| webkit2gtk3-devel | x86_64 | 2.38.2-9.ks6 |
| jsc4.1-devel | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk4.1-devel | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk3-jsc | x86_64 | 2.38.2-9.ks6 |
| jsc4.1 | x86_64 | 2.38.2-9.ks6 |
| jsc5.0 | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk3 | x86_64 | 2.38.2-9.ks6 |
| jsc5.0-devel | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk4.1 | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk3-jsc-devel | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk5.0 | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk5.0-devel | x86_64 | 2.38.2-9.ks6 |
| webkit2gtk3-jsc | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk4.1 | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk3 | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk3-devel | aarch64 | 2.38.2-9.ks6 |
| jsc5.0-devel | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk4.1-devel | aarch64 | 2.38.2-9.ks6 |
| jsc4.1-devel | aarch64 | 2.38.2-9.ks6 |
| jsc5.0 | aarch64 | 2.38.2-9.ks6 |
| jsc4.1 | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk5.0-devel | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk5.0 | aarch64 | 2.38.2-9.ks6 |
| webkit2gtk3-jsc-devel | aarch64 | 2.38.2-9.ks6 |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| webkit2gtk3-help | noarch | 2.36.3-7.ky3_5 |
| webkit2gtk3 | x86_64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-devel | x86_64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-jsc-devel | x86_64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-jsc | x86_64 | 2.36.3-7.ky3_5 |
| webkit2gtk3 | aarch64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-jsc-devel | aarch64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-devel | aarch64 | 2.36.3-7.ky3_5 |
| webkit2gtk3-jsc | aarch64 | 2.36.3-7.ky3_5 |
方法一:下载安装包进行升级安装
1、通过下载链接下载需要升级的升级包保存,如 xxx.rpm
2、通过rpm命令升级,如 rpm -Uvh xxx.rpm
方法二:通过软件源进行升级安装
1、保持能够连接上互联网
2、通过yum命令升级指定的包,如 yum install 包名
