Fedora 41: webkit2gtk4.0 2024-92d80d7f9a Security Advisory Updates
Summary
WebKitGTK is the port of the WebKit web rendering engine to the
GTK platform. This package contains WebKitGTK for GTK 3 and libsoup 2.
Update Information:
Update to 2.46.1
Change Log
* Thu Oct 3 2024 Michael Catanzaro
References
[ 1 ] Bug #2314731 - CVE-2024-44187 webkit2gtk4.0: A malicious website may exfiltrate data cross-origin [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314731 [ 2 ] Bug #2314733 - CVE-2024-40857 webkit2gtk4.0: Processing maliciously crafted web content may lead to universal cross site scripting [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314733 [ 3 ] Bug #2314743 - CVE-2024-27851 webkit2gtk4.0: Processing maliciously crafted web content may lead to arbitrary code execution [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314743 [ 4 ] Bug #2314747 - CVE-2024-23271 webkit2gtk4.0: A malicious website may cause unexpected cross-origin behavior [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314747 [ 5 ] Bug #2314749 - CVE-2024-27838 webkit2gtk4.0: A maliciously crafted webpage may be able to fingerprint the user [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314749 [ 6 ] Bug #2314752 - CVE-2024-27833 webkit2gtk4.0: Processing maliciously crafted web content may lead to arbitrary code execution [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314752
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-92d80d7f9a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label