Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2021.3282.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2021:3282-1)
Summary:The remote host is missing an update for the 'webkit2gtk3' package(s) announced via the SUSE-SU-2021:3282-1 advisory.
Description:Summary:
The remote host is missing an update for the 'webkit2gtk3' package(s) announced via the SUSE-SU-2021:3282-1 advisory.

Vulnerability Insight:
This update for webkit2gtk3 fixes the following issues:

Update to version 2.32.4

CVE-2021-30858: Fixed a security bug that could allow maliciously
crafted web content to achieve arbitrary code execution. (bsc#1190701)

CVE-2021-21806: Fixed an exploitable use-after-free vulnerability via
specially crafted HTML web page. (bsc#1188697)

Affected Software/OS:
'webkit2gtk3' package(s) on SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, SUSE Linux Enterprise High Performance Computing 15, SUSE Linux Enterprise High Performance Computing 15-SP1, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 15-SP1, SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Server for SAP 15-SP1.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2021-21806
Common Vulnerability Exposure (CVE) ID: CVE-2021-30858
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.