Rocky Enterprise Software Foundation Product Errata

RLSA-2022:6634

Moderate: webkit2gtk3 security update

Topic

An update is available for webkit2gtk3.

This update affects Rocky Linux 9.

A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Description

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.

The following packages have been upgraded to a later upstream version: webkit2gtk3 (2.36.7).

Security Fix(es):

* webkitgtk: processing maliciously crafted web content may lead to arbitrary code execution (CVE-2022-32893)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Issued: 9/20/2022

Type: Security

Severity: Moderate

Affected Product

Rocky Linux 9

Fixes

Red Hat - 2121645

CVEs

CVE-2022-32893 (Source: MITRE)

References

No references

Product Errata

Topic

Description

Rocky Linux 9

SRPMs

RPMs