Upstream has issued an advisory today (July 28): https://webkitgtk.org/security/WSA-2022-0007.html The issues are fixed upstream in 2.36.5: https://webkitgtk.org/2022/07/28/webkitgtk2.36.5-released.html
There is a new version 2.36.6: https://webkitgtk.org/2022/08/07/webkitgtk2.36.6-released.html
Suggested advisory: ======================== The updated packages fix security vulnerabilities and other issues. References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32792 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32816 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2294 https://webkitgtk.org/security/WSA-2022-0007.html https://webkitgtk.org/2022/07/28/webkitgtk2.36.5-released.html https://webkitgtk.org/2022/08/07/webkitgtk2.36.6-released.html ======================== Updated packages in core/updates_testing: ======================== lib(64)javascriptcoregtk4.0_18-2.36.6-1.mga8 lib(64)javascriptcore-gir4.0-2.36.6-1.mga8 lib(64)webkit2gtk4.0_37-2.36.6-1.mga8 lib(64)webkit2gtk-gir4.0-2.36.6-1.mga8 lib(64)webkit2-devel-2.36.6-1.mga8 webkit2-2.36.6-1.mga8 webkit2-jsc-2.36.6-1.mga8.x86_64.rpm from SRPM: webkit2-2.36.6-1.mga8.src.rpm
CC: (none) => nicolas.salgueroAssignee: nicolas.salguero => qa-bugsStatus: NEW => ASSIGNED
Tested using zenity --calendar. Validating the update.
Keywords: (none) => advisory, validated_updateCC: (none) => davidwhodgins, sysadmin-bugsWhiteboard: (none) => MGA8-64-OK
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0287.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED