Postgresql14, Xen, Webkit2GTK3 updates for SUSE Linux

SUSE 5157 Published 2024-11-30 08:15 by Philipp Esselbach

News

SUSE Linux recently released several security updates, including postgresql14, xen, and webkit2gtk3:

SUSE-SU-2024:4118-1: important: Security update for postgresql14
SUSE-SU-2024:4116-1: important: Security update for xen
SUSE-SU-2024:4117-1: important: Security update for webkit2gtk3

SUSE-SU-2024:4118-1: important: Security update for postgresql14

# Security update for postgresql14

Announcement ID: SUSE-SU-2024:4118-1
Release Date: 2024-11-29T16:24:08Z
Rating: important
References:

* bsc#1233323
* bsc#1233325
* bsc#1233326
* bsc#1233327

Cross-References:

* CVE-2024-10976
* CVE-2024-10977
* CVE-2024-10978
* CVE-2024-10979

CVSS scores:

* CVE-2024-10976 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-10976 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-10977 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2024-10977 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2024-10978 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-10978 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-10979 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-10979 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products:

* Legacy Module 15-SP6
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Package Hub 15 15-SP6

An update that solves four vulnerabilities can now be installed.

## Description:

This update for postgresql14 fixes the following issues:

* CVE-2024-10976: Ensure cached plans are marked as dependent on the calling
role when RLS applies to a non-top-level table reference (bsc#1233323).
* CVE-2024-10977: Make libpq discard error messages received during SSL or GSS
protocol negotiation (bsc#1233325).
* CVE-2024-10978: Fix unintended interactions between SET SESSION
AUTHORIZATION and SET ROLE (bsc#1233326).
* CVE-2024-10979: Prevent trusted PL/Perl code from changing environment
variables (bsc#1233327).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-4118=1 openSUSE-SLE-15.6-2024-4118=1

* Legacy Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-4118=1

* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-4118=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* postgresql14-plpython-14.15-150600.16.9.1
* postgresql14-test-14.15-150600.16.9.1
* postgresql14-debugsource-14.15-150600.16.9.1
* postgresql14-contrib-debuginfo-14.15-150600.16.9.1
* postgresql14-contrib-14.15-150600.16.9.1
* postgresql14-plperl-debuginfo-14.15-150600.16.9.1
* postgresql14-debuginfo-14.15-150600.16.9.1
* postgresql14-plpython-debuginfo-14.15-150600.16.9.1
* postgresql14-devel-debuginfo-14.15-150600.16.9.1
* postgresql14-14.15-150600.16.9.1
* postgresql14-plperl-14.15-150600.16.9.1
* postgresql14-llvmjit-debuginfo-14.15-150600.16.9.1
* postgresql14-devel-14.15-150600.16.9.1
* postgresql14-server-devel-debuginfo-14.15-150600.16.9.1
* postgresql14-llvmjit-14.15-150600.16.9.1
* postgresql14-llvmjit-devel-14.15-150600.16.9.1
* postgresql14-pltcl-debuginfo-14.15-150600.16.9.1
* postgresql14-server-devel-14.15-150600.16.9.1
* postgresql14-pltcl-14.15-150600.16.9.1
* postgresql14-server-14.15-150600.16.9.1
* postgresql14-server-debuginfo-14.15-150600.16.9.1
* openSUSE Leap 15.6 (noarch)
* postgresql14-docs-14.15-150600.16.9.1
* Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* postgresql14-debuginfo-14.15-150600.16.9.1
* postgresql14-pltcl-debuginfo-14.15-150600.16.9.1
* postgresql14-contrib-debuginfo-14.15-150600.16.9.1
* postgresql14-devel-debuginfo-14.15-150600.16.9.1
* postgresql14-plpython-debuginfo-14.15-150600.16.9.1
* postgresql14-server-devel-14.15-150600.16.9.1
* postgresql14-plpython-14.15-150600.16.9.1
* postgresql14-14.15-150600.16.9.1
* postgresql14-plperl-14.15-150600.16.9.1
* postgresql14-pltcl-14.15-150600.16.9.1
* postgresql14-server-14.15-150600.16.9.1
* postgresql14-debugsource-14.15-150600.16.9.1
* postgresql14-devel-14.15-150600.16.9.1
* postgresql14-server-devel-debuginfo-14.15-150600.16.9.1
* postgresql14-contrib-14.15-150600.16.9.1
* postgresql14-server-debuginfo-14.15-150600.16.9.1
* postgresql14-plperl-debuginfo-14.15-150600.16.9.1
* Legacy Module 15-SP6 (noarch)
* postgresql14-docs-14.15-150600.16.9.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* postgresql14-debuginfo-14.15-150600.16.9.1
* postgresql14-test-14.15-150600.16.9.1
* postgresql14-debugsource-14.15-150600.16.9.1
* postgresql14-llvmjit-debuginfo-14.15-150600.16.9.1
* postgresql14-llvmjit-14.15-150600.16.9.1

## References:

* https://www.suse.com/security/cve/CVE-2024-10976.html
* https://www.suse.com/security/cve/CVE-2024-10977.html
* https://www.suse.com/security/cve/CVE-2024-10978.html
* https://www.suse.com/security/cve/CVE-2024-10979.html
* https://bugzilla.suse.com/show_bug.cgi?id=1233323
* https://bugzilla.suse.com/show_bug.cgi?id=1233325
* https://bugzilla.suse.com/show_bug.cgi?id=1233326
* https://bugzilla.suse.com/show_bug.cgi?id=1233327

SUSE-SU-2024:4116-1: important: Security update for xen

# Security update for xen

Announcement ID: SUSE-SU-2024:4116-1
Release Date: 2024-11-29T16:06:18Z
Rating: important
References:

* bsc#1232542
* bsc#1232622
* bsc#1232624

Cross-References:

* CVE-2024-45818
* CVE-2024-45819

CVSS scores:

* CVE-2024-45818 ( SUSE ): 8.2
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H
* CVE-2024-45818 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
* CVE-2024-45819 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N
* CVE-2024-45819 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3

An update that solves two vulnerabilities and has one security fix can now be
installed.

## Description:

This update for xen fixes the following issues:

* CVE-2024-45818: Fixed deadlock in x86 HVM standard VGA handling (XSA-463)
(bsc#1232622).
* CVE-2024-45819: Fixed libxl data leaks to PVH guests via ACPI tables
(XSA-464) (bsc#1232624).

Bug fixes:

* Remove usage of net-tools-deprecated from supportconfig plugin
(bsc#1232542).

## Special Instructions and Notes:

* Please reboot the system after installing this update.

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-4116=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-4116=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-4116=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-4116=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-4116=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-4116=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-4116=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-4116=1

* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-4116=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-4116=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-4116=1

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-4116=1

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-4116=1

## Package List:

* openSUSE Leap 15.4 (aarch64 x86_64 i586)
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* openSUSE Leap 15.4 (x86_64)
* xen-libs-32bit-debuginfo-4.16.6_06-150400.4.65.1
* xen-libs-32bit-4.16.6_06-150400.4.65.1
* openSUSE Leap 15.4 (aarch64 x86_64)
* xen-tools-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-doc-html-4.16.6_06-150400.4.65.1
* openSUSE Leap 15.4 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* xen-libs-64bit-debuginfo-4.16.6_06-150400.4.65.1
* xen-libs-64bit-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (x86_64)
* xen-libs-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Micro 5.3 (x86_64)
* xen-libs-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (x86_64)
* xen-libs-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Micro 5.4 (x86_64)
* xen-libs-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS (x86_64)
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Manager Proxy 4.3 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Manager Proxy 4.3 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Manager Retail Branch Server 4.3 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1
* SUSE Manager Server 4.3 (x86_64)
* xen-tools-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-debuginfo-4.16.6_06-150400.4.65.1
* xen-tools-domU-4.16.6_06-150400.4.65.1
* xen-libs-debuginfo-4.16.6_06-150400.4.65.1
* xen-devel-4.16.6_06-150400.4.65.1
* xen-4.16.6_06-150400.4.65.1
* xen-libs-4.16.6_06-150400.4.65.1
* xen-tools-4.16.6_06-150400.4.65.1
* xen-debugsource-4.16.6_06-150400.4.65.1
* SUSE Manager Server 4.3 (noarch)
* xen-tools-xendomains-wait-disk-4.16.6_06-150400.4.65.1

## References:

* https://www.suse.com/security/cve/CVE-2024-45818.html
* https://www.suse.com/security/cve/CVE-2024-45819.html
* https://bugzilla.suse.com/show_bug.cgi?id=1232542
* https://bugzilla.suse.com/show_bug.cgi?id=1232622
* https://bugzilla.suse.com/show_bug.cgi?id=1232624

SUSE-SU-2024:4117-1: important: Security update for webkit2gtk3

# Security update for webkit2gtk3

Announcement ID: SUSE-SU-2024:4117-1
Release Date: 2024-11-29T16:23:46Z
Rating: important
References:

* bsc#1232747
* bsc#1233631
* bsc#1233632

Cross-References:

* CVE-2024-44185
* CVE-2024-44296
* CVE-2024-44308
* CVE-2024-44309
* CVE-2044-44244

CVSS scores:

* CVE-2024-44185 ( SUSE ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-44185 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2024-44185 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2024-44185 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2024-44296 ( SUSE ): 2.1
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2024-44296 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2024-44296 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2024-44296 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2024-44308 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-44308 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-44308 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-44309 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2024-44309 ( NVD ): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2024-44309 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products:

* Basesystem Module 15-SP5
* Desktop Applications Module 15-SP5
* Development Tools Module 15-SP5
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP4 LTSS
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3

An update that solves five vulnerabilities can now be installed.

## Description:

This update for webkit2gtk3 fixes the following issues:

Update to version 2.46.3 (bsc#1232747), including fixes for:

* CVE-2024-44308: Fixed arbitrary code execution by not allocating DFG
register after a slow path (bsc#1233631).
* CVE-2024-44309: Fixed a data isolation bypass vulnerability (bsc#1233632).
* CVE-2024-44244: Processing maliciously crafted web content may lead to an
unexpected process crash.
* CVE-2024-44296: Processing maliciously crafted web content may prevent
Content Security Policy from being enforced.

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-4117=1

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-4117=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-4117=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-4117=1

* Desktop Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-4117=1

* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-4117=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-4117=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-4117=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-4117=1

* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-4117=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-4117=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-4117=1

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-4117=1

## Package List:

* SUSE Manager Server 4.3 (noarch)
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* openSUSE Leap 15.4 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* webkit2gtk3-minibrowser-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* webkit2gtk4-minibrowser-2.46.3-150400.4.97.1
* webkit2gtk4-devel-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk4-minibrowser-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-6_0-2.46.3-150400.4.97.1
* webkit2gtk3-minibrowser-debuginfo-2.46.3-150400.4.97.1
* webkit-jsc-4.1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-minibrowser-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit-6_0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* webkit-jsc-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-minibrowser-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* webkit-jsc-4-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* webkit-jsc-4.1-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* webkit-jsc-6.0-2.46.3-150400.4.97.1
* webkit-jsc-6.0-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* openSUSE Leap 15.4 (x86_64)
* libwebkit2gtk-4_1-0-32bit-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-32bit-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-32bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-32bit-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-32bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-32bit-debuginfo-2.46.3-150400.4.97.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libjavascriptcoregtk-4_1-0-64bit-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-64bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-64bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-64bit-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-64bit-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-64bit-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-64bit-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-64bit-2.46.3-150400.4.97.1
* openSUSE Leap 15.5 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* webkit2gtk3-minibrowser-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* webkit2gtk4-minibrowser-2.46.3-150400.4.97.1
* webkit2gtk4-devel-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk4-minibrowser-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-6_0-2.46.3-150400.4.97.1
* webkit2gtk3-minibrowser-debuginfo-2.46.3-150400.4.97.1
* webkit-jsc-4.1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-minibrowser-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit-6_0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* webkit-jsc-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-minibrowser-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* webkit-jsc-4-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* webkit-jsc-4.1-debuginfo-2.46.3-150400.4.97.1
* webkit-jsc-6.0-2.46.3-150400.4.97.1
* webkit-jsc-6.0-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* openSUSE Leap 15.5 (x86_64)
* libwebkit2gtk-4_1-0-32bit-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-32bit-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-32bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-32bit-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-32bit-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-32bit-debuginfo-2.46.3-150400.4.97.1
* Basesystem Module 15-SP5 (noarch)
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* Desktop Applications Module 15-SP5 (noarch)
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* Development Tools Module 15-SP5 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS (x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* WebKitGTK-6.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* WebKitGTK-4.1-lang-2.46.3-150400.4.97.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-debugsource-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-2.46.3-150400.4.97.1
* webkit2gtk4-debugsource-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk3-devel-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_1-0-2.46.3-150400.4.97.1
* webkitgtk-6_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_1-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_1-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_1-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_1-injected-bundles-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-2.46.3-150400.4.97.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_1-0-2.46.3-150400.4.97.1
* libwebkitgtk-6_0-4-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* SUSE Manager Proxy 4.3 (noarch)
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* SUSE Manager Proxy 4.3 (x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1
* SUSE Manager Retail Branch Server 4.3 (noarch)
* WebKitGTK-4.0-lang-2.46.3-150400.4.97.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* libjavascriptcoregtk-4_0-18-2.46.3-150400.4.97.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-2.46.3-150400.4.97.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-debuginfo-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2-4_0-2.46.3-150400.4.97.1
* typelib-1_0-WebKit2WebExtension-4_0-2.46.3-150400.4.97.1
* libwebkit2gtk-4_0-37-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-debugsource-2.46.3-150400.4.97.1
* typelib-1_0-JavaScriptCore-4_0-2.46.3-150400.4.97.1
* webkit2gtk3-soup2-devel-2.46.3-150400.4.97.1

## References:

* https://www.suse.com/security/cve/CVE-2024-44185.html
* https://www.suse.com/security/cve/CVE-2024-44296.html
* https://www.suse.com/security/cve/CVE-2024-44308.html
* https://www.suse.com/security/cve/CVE-2024-44309.html
* https://www.suse.com/security/cve/CVE-2044-44244.html
* https://bugzilla.suse.com/show_bug.cgi?id=1232747
* https://bugzilla.suse.com/show_bug.cgi?id=1233631
* https://bugzilla.suse.com/show_bug.cgi?id=1233632

Apache NetBeans 24-rc5 released

Icinga2 and ProFTPD updates for Debian

Postgresql14, Xen, Webkit2GTK3 updates for SUSE Linux

SUSE-SU-2024:4118-1: important: Security update for postgresql14

SUSE-SU-2024:4116-1: important: Security update for xen

SUSE-SU-2024:4117-1: important: Security update for webkit2gtk3

Windows

Linux

macOS

Community