A webkit2gtk3 security update has been released for Fedora Linux 36.

SECURITY: Fedora 36 Update: webkit2gtk3-2.40.1-1.fc36

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-8900b35c6f
2023-05-05 14:43:42.957750
--------------------------------------------------------------------------------

Name : webkit2gtk3
Product : Fedora 36
Version : 2.40.1
Release : 1.fc36
URL :   https://www.webkitgtk.org/
Summary : GTK Web content engine library
Description :
WebKitGTK is the port of the portable web rendering engine WebKit to the
GTK platform.

This package contains WebKit2 based WebKitGTK for GTK 3.

--------------------------------------------------------------------------------
Update Information:

* The Bubblewrap sandbox no longer requires setting an application identifier
via GApplication to operate correctly. Using GApplication is still recommended,
but optional. * Adjust the scrolling speed for mouse wheels to make it feel
more natural. * Allow pasting content using the Asynchronous Clipboard API when
the origin is the same as the clipboard contents. * Improvements to the
GStreamer multimedia playback, in particular around MSE, WebRTC, and seeking. *
Make all supported image types appear in the Accept HTTP header. * Fix text
caret blinking when blinking is disabled in the GTK settings. * Fix default
database quota size definition. * Fix application of all caps tags listed in
the font-feature-settings CSS property. * Fix font height calculations for the
font-size-adjust CSS property. * Fix several crashes and rendering issues. *
Security fixes: CVE-2022-0108, CVE-2022-32885, CVE-2023-25358, CVE-2023-27932,
CVE-2023-27954, CVE-2023-28205
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 19 2023 Michael Catanzaro - 2.40.1-1
- Update to 2.40.1
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2185730 - CVE-2023-28205 webkit2gtk3: WebKitGTK: use-after-free leads to arbitrary code execution [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=2185730
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-8900b35c6f' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________