This update for webkit2gtk3 fixes the following issues:
-webkit2gtk3 was updated to version 2.30.3 (bsc#1179122 bsc#1179451): - CVE-2021-13543: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-13584: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9948: Fixed a type confusion which could have led to arbitrary code execution. - CVE-2021-9951: Fixed a use after free which could have led to arbitrary code execution. - CVE-2021-9983: Fixed an out of bounds write which could have led to arbitrary code execution. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (bsc#1171531). - Enable cloop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with cloop (bsc#1177087).
This update was imported from the SUSE:SLE-15:Update update project.
{ "binaries": [ { "typelib-1_0-WebKit2-4_0": "2.30.3-lp151.2.28.2", "typelib-1_0-JavaScriptCore-4_0": "2.30.3-lp151.2.28.2", "libjavascriptcoregtk-4_0-18": "2.30.3-lp151.2.28.2", "webkit2gtk3-minibrowser": "2.30.3-lp151.2.28.2", "libwebkit2gtk-4_0-37-32bit": "2.30.3-lp151.2.28.2", "webkit-jsc-4": "2.30.3-lp151.2.28.2", "libwebkit2gtk-4_0-37": "2.30.3-lp151.2.28.2", "webkit2gtk-4_0-injected-bundles": "2.30.3-lp151.2.28.2", "libwebkit2gtk3-lang": "2.30.3-lp151.2.28.2", "libjavascriptcoregtk-4_0-18-32bit": "2.30.3-lp151.2.28.2", "typelib-1_0-WebKit2WebExtension-4_0": "2.30.3-lp151.2.28.2", "webkit2gtk3-devel": "2.30.3-lp151.2.28.2" } ] }