| Summary: | webkit2 security issues fixed upstream (WSA-2022-0010) | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | andrewsfarm, davidwhodgins, herman.viaene, nicolas.salguero, sysadmin-bugs |
| Version: | 8 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA8-64-OK | ||
| Source RPM: | webkit2-2.36.8-1.mga8.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2022-11-04 17:12:29 CET
David Walser
2022-11-04 17:12:49 CET
Status comment:
(none) =>
Fixed upstream in 2.38.2 NicolasS has already put version 2.38.2 into Cauldron, so please excuse assigning this to you to wrap up. Assignee:
bugsquad =>
nicolas.salguero Suggested advisory: ======================== The updated packages fix a security vulnerability and other issues. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32888 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32923 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42799 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42823 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42824 https://webkitgtk.org/security/WSA-2022-0010.html https://webkitgtk.org/2022/11/04/webkitgtk2.38.2-released.html ======================== Updated packages in core/updates_testing: ======================== lib(64)javascriptcoregtk4.0_18-2.38.2-1.mga8 lib(64)javascriptcore-gir4.0-2.38.2-1.mga8 lib(64)webkit2gtk4.0_37-2.38.2-1.mga8 lib(64)webkit2gtk-gir4.0-2.38.2-1.mga8 lib(64)webkit2-devel-2.38.2-1.mga8 webkit2-2.38.2-1.mga8 webkit2-jsc-2.38.2-1.mga8.x86_64.rpm from SRPM: webkit2-2.38.2-1.mga8.src.rpm CC:
(none) =>
nicolas.salguero MGA8-64 MATE on Acer Aspire 5253 No installation issues Ref bug 30866 for testing Closed and restarted MCC, rummaged around in its different sections (firewall, local disks, visibilty on SMB shares, Hardware, all works OK. CC:
(none) =>
herman.viaene On Foolishness, my 32-bit Del Inspiron 5100, with a 32-bit Xfce system, there were also no installation issues. The issue with MCC, in that it comes up with a blank screen, has not been fixed, but there is some progress. Previously, the window was completely unresponsive. Now, there are indications that the left hand pane is responding. You can move the cursor over an option, click on it, and it stays highlighted, as if it had moved to the indicated section. The right hand pane stays blank, but as the cursor is moved over it you can see it change over different parts of the blank pane, and if you click on it when you see a pointing hand it brings up the Mageia tool you would expect from that position. I'm not going to give this a 32-bit OK, as it isn't fixed for that arch yet, but I will validate it because there has been progress and there are no new regressions that I can see. Advisory in comment 2. CC:
(none) =>
andrewsfarm, sysadmin-bugs
Dave Hodgins
2022-11-13 00:25:08 CET
CC:
(none) =>
davidwhodgins An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0421.html Status:
ASSIGNED =>
RESOLVED |