Upstream has issued an advisory yesterday (October 26): https://webkitgtk.org/security/WSA-2021-0006.html The issues are fixed upstream in 2.34.1: https://webkitgtk.org/2021/10/21/webkitgtk2.34.1-released.html
Source RPM: (none) => webkit2-2.32.4-1.mga8.src.rpm
Assignee: bugsquad => nicolas.salgueroCC: (none) => nicolas.salguero
Suggested advisory: ======================== Updated webkit2 packages fix security vulnerabilities: The webkit2 package has been updated to version 2.34.1, fixing several security issues and other bugs. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30846 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30848 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30849 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30851 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30858 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42762 https://webkitgtk.org/security/WSA-2021-0006.html https://webkitgtk.org/2021/10/21/webkitgtk2.34.1-released.html ======================== Updated packages in core/updates_testing: ======================== webkit2-2.34.1-1.mga8 webkit2-jsc-2.34.1-1.mga8 lib(64)webkit2gtk-gir4.0-2.34.1-1.mga8 lib(64)javascriptcore-gir4.0-2.34.1-1.mga8 lib(64)javascriptcoregtk4.0_18-2.34.1-1.mga8 lib(64)webkit2gtk4.0_37-2.34.1-1.mga8 lib(64)webkit2-devel-2.34.1-1.mga8 from SRPM: webkit2-2.34.1-1.mga8.src.rpm
Status: NEW => ASSIGNEDAssignee: nicolas.salguero => qa-bugs
In VirtualBox, MGA8-64 Plasma: No installation issues. Borrowing Herman's classic test from many previous updates... $ zenity --calendar Calendar dialog opened, selected a random date 11/25/2021 Looks OK here. Validating. Advisory in Comment 1.
Whiteboard: (none) => MGA8-64-OKCC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0498.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED