Security update for webkit2gtk3 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2023:2606-1 Final 1 1 2023-06-22T07:50:36Z current 2023-06-22T07:50:36Z 2023-06-22T07:50:36Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: Add security patches (bsc#1211846): - CVE-2023-28204: Fixed processing of web content that may disclose sensitive information (bsc#1211659). - CVE-2023-32373: Fixed processing of maliciously crafted web content that may lead to arbitrary code execution (bsc#1211658). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2023-2606,SUSE-OpenStack-Cloud-9-2023-2606,SUSE-OpenStack-Cloud-Crowbar-9-2023-2606,SUSE-SLE-SAP-12-SP4-2023-2606,SUSE-SLE-SDK-12-SP5-2023-2606,SUSE-SLE-SERVER-12-SP2-BCL-2023-2606,SUSE-SLE-SERVER-12-SP4-ESPOS-2023-2606,SUSE-SLE-SERVER-12-SP4-LTSS-2023-2606,SUSE-SLE-SERVER-12-SP5-2023-2606 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2023/suse-su-20232606-1/ Link for SUSE-SU-2023:2606-1 https://lists.suse.com/pipermail/sle-updates/2023-June/029995.html E-Mail link for SUSE-SU-2023:2606-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1211658 SUSE Bug 1211658 https://bugzilla.suse.com/1211659 SUSE Bug 1211659 https://bugzilla.suse.com/1211846 SUSE Bug 1211846 https://www.suse.com/security/cve/CVE-2023-28204/ SUSE CVE CVE-2023-28204 page https://www.suse.com/security/cve/CVE-2023-32373/ SUSE CVE CVE-2023-32373 page SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 libjavascriptcoregtk-4_0-18-32bit-2.38.6-2.139.1 libjavascriptcoregtk-4_0-18-64bit-2.38.6-2.139.1 libwebkit2gtk-4_0-37-2.38.6-2.139.1 libwebkit2gtk-4_0-37-32bit-2.38.6-2.139.1 libwebkit2gtk-4_0-37-64bit-2.38.6-2.139.1 libwebkit2gtk3-lang-2.38.6-2.139.1 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 webkit-jsc-4-2.38.6-2.139.1 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 webkit2gtk3-devel-2.38.6-2.139.1 webkit2gtk3-minibrowser-2.38.6-2.139.1 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL webkit2gtk3-devel-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP2-BCL libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-ESPOS libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP4-LTSS libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server 12 SP5 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP4 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 webkit2gtk3-devel-2.38.6-2.139.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud 9 libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 libwebkit2gtk-4_0-37-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 libwebkit2gtk3-lang-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 as a component of SUSE OpenStack Cloud Crowbar 9 An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited. CVE-2023-28204 SUSE Linux Enterprise Server 12 SP2-BCL:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:webkit2gtk3-devel-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Software Development Kit 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Software Development Kit 12 SP5:webkit2gtk3-devel-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 moderate 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232606-1/ https://www.suse.com/security/cve/CVE-2023-28204.html CVE-2023-28204 https://bugzilla.suse.com/1211659 SUSE Bug 1211659 A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. CVE-2023-32373 SUSE Linux Enterprise Server 12 SP2-BCL:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP2-BCL:webkit2gtk3-devel-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-ESPOS:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP4-LTSS:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server 12 SP5:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP4:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE Linux Enterprise Software Development Kit 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE Linux Enterprise Software Development Kit 12 SP5:webkit2gtk3-devel-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE OpenStack Cloud 9:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud 9:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libjavascriptcoregtk-4_0-18-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libwebkit2gtk-4_0-37-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:libwebkit2gtk3-lang-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-JavaScriptCore-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-WebKit2-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:typelib-1_0-WebKit2WebExtension-4_0-2.38.6-2.139.1 SUSE OpenStack Cloud Crowbar 9:webkit2gtk-4_0-injected-bundles-2.38.6-2.139.1 important 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2023/suse-su-20232606-1/ https://www.suse.com/security/cve/CVE-2023-32373.html CVE-2023-32373 https://bugzilla.suse.com/1211658 SUSE Bug 1211658