Upstream has issued an advisory today (February 9): https://webkitgtk.org/security/WSA-2022-0002.html The issues are fixed upstream in 2.34.5: https://webkitgtk.org/2022/02/09/webkitgtk2.34.5-released.html Mageia 8 is also affected.
CVE-2022-22589, CVE-2022-22590, CVE-2022-22592 are fixed in this update. Updates submitted to the build system. Package list will be: webkit2-2.34.5-1.mga8 webkit2-jsc-2.34.5-1.mga8 libwebkit2gtk-gir4.0-2.34.5-1.mga8 libjavascriptcore-gir4.0-2.34.5-1.mga8 libjavascriptcoregtk4.0_18-2.34.5-1.mga8 libwebkit2gtk4.0_37-2.34.5-1.mga8 libwebkit2-devel-2.34.5-1.mga8 from SRPM: webkit2-2.34.5-1.mga8.src.rpm
Assignee: bugsquad => qa-bugs
MGA8-64 Plasma on Lenovo B50 in Dutch No installation issues $ zenity --calendar selected 24/2/2022 from dialogue (zenity:12102): Gtk-WARNING **: 16:38:36.508: Theme parsing error: gtk.css:2:33: Failed to import: Fout bij het openen van bestand /home/tester8/.config/gtk-3.0/window_decorations.css: Bestand of map bestaat niet 24-02-22 Ref bug 29921 Comment 5: opened a pfd-file with atril: looks OK.
CC: (none) => herman.viaeneWhiteboard: (none) => MGA8-64-OK
Validating.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
Keywords: (none) => advisoryCC: (none) => davidwhodgins
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0059.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED