libjavascriptcoregtk-1_0-0-2.4.11-3.3 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10461-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libjavascriptcoregtk-1_0-0-2.4.11-3.3 on GA media These are all security issues fixed in the libjavascriptcoregtk-1_0-0-2.4.11-3.3 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10461 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2012-5112/ SUSE CVE CVE-2012-5112 page https://www.suse.com/security/cve/CVE-2012-5133/ SUSE CVE CVE-2012-5133 page https://www.suse.com/security/cve/CVE-2014-1344/ SUSE CVE CVE-2014-1344 page https://www.suse.com/security/cve/CVE-2014-1384/ SUSE CVE CVE-2014-1384 page https://www.suse.com/security/cve/CVE-2014-1385/ SUSE CVE CVE-2014-1385 page https://www.suse.com/security/cve/CVE-2014-1386/ SUSE CVE CVE-2014-1386 page https://www.suse.com/security/cve/CVE-2014-1387/ SUSE CVE CVE-2014-1387 page https://www.suse.com/security/cve/CVE-2014-1388/ SUSE CVE CVE-2014-1388 page https://www.suse.com/security/cve/CVE-2014-1389/ SUSE CVE CVE-2014-1389 page https://www.suse.com/security/cve/CVE-2014-1390/ SUSE CVE CVE-2014-1390 page https://www.suse.com/security/cve/CVE-2014-1748/ SUSE CVE CVE-2014-1748 page https://www.suse.com/security/cve/CVE-2015-1071/ SUSE CVE CVE-2015-1071 page https://www.suse.com/security/cve/CVE-2015-1076/ SUSE CVE CVE-2015-1076 page https://www.suse.com/security/cve/CVE-2015-1081/ SUSE CVE CVE-2015-1081 page https://www.suse.com/security/cve/CVE-2015-1083/ SUSE CVE CVE-2015-1083 page https://www.suse.com/security/cve/CVE-2015-1120/ SUSE CVE CVE-2015-1120 page https://www.suse.com/security/cve/CVE-2015-1122/ SUSE CVE CVE-2015-1122 page https://www.suse.com/security/cve/CVE-2015-1127/ SUSE CVE CVE-2015-1127 page https://www.suse.com/security/cve/CVE-2015-1153/ SUSE CVE CVE-2015-1153 page https://www.suse.com/security/cve/CVE-2015-1155/ SUSE CVE CVE-2015-1155 page https://www.suse.com/security/cve/CVE-2015-2330/ SUSE CVE CVE-2015-2330 page https://www.suse.com/security/cve/CVE-2015-3658/ SUSE CVE CVE-2015-3658 page https://www.suse.com/security/cve/CVE-2015-3659/ SUSE CVE CVE-2015-3659 page https://www.suse.com/security/cve/CVE-2015-3727/ SUSE CVE CVE-2015-3727 page https://www.suse.com/security/cve/CVE-2015-3731/ SUSE CVE CVE-2015-3731 page https://www.suse.com/security/cve/CVE-2015-3741/ SUSE CVE CVE-2015-3741 page https://www.suse.com/security/cve/CVE-2015-3743/ SUSE CVE CVE-2015-3743 page https://www.suse.com/security/cve/CVE-2015-3745/ SUSE CVE CVE-2015-3745 page https://www.suse.com/security/cve/CVE-2015-3747/ SUSE CVE CVE-2015-3747 page https://www.suse.com/security/cve/CVE-2015-3748/ SUSE CVE CVE-2015-3748 page https://www.suse.com/security/cve/CVE-2015-3749/ SUSE CVE CVE-2015-3749 page https://www.suse.com/security/cve/CVE-2015-3752/ SUSE CVE CVE-2015-3752 page https://www.suse.com/security/cve/CVE-2015-5788/ SUSE CVE CVE-2015-5788 page https://www.suse.com/security/cve/CVE-2015-5794/ SUSE CVE CVE-2015-5794 page https://www.suse.com/security/cve/CVE-2015-5801/ SUSE CVE CVE-2015-5801 page https://www.suse.com/security/cve/CVE-2015-5809/ SUSE CVE CVE-2015-5809 page https://www.suse.com/security/cve/CVE-2015-5822/ SUSE CVE CVE-2015-5822 page https://www.suse.com/security/cve/CVE-2015-5928/ SUSE CVE CVE-2015-5928 page openSUSE Tumbleweed libjavascriptcoregtk-1_0-0-2.4.11-3.3 libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 libjavascriptcoregtk-3_0-0-2.4.11-3.3 libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 libwebkitgtk-1_0-0-2.4.11-3.3 libwebkitgtk-1_0-0-32bit-2.4.11-3.3 libwebkitgtk-3_0-0-2.4.11-3.3 libwebkitgtk-3_0-0-32bit-2.4.11-3.3 libwebkitgtk-devel-2.4.11-3.3 libwebkitgtk2-lang-2.4.11-3.3 libwebkitgtk3-devel-2.4.11-3.3 libwebkitgtk3-lang-2.4.11-3.3 typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 typelib-1_0-WebKit-1_0-2.4.11-3.3 typelib-1_0-WebKit-3_0-2.4.11-3.3 webkit-jsc-1-2.4.11-3.3 webkit-jsc-3-2.4.11-3.3 libjavascriptcoregtk-1_0-0-2.4.11-3.3 as a component of openSUSE Tumbleweed libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 as a component of openSUSE Tumbleweed libjavascriptcoregtk-3_0-0-2.4.11-3.3 as a component of openSUSE Tumbleweed libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk-1_0-0-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk-1_0-0-32bit-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk-3_0-0-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk-3_0-0-32bit-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk-devel-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk2-lang-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk3-devel-2.4.11-3.3 as a component of openSUSE Tumbleweed libwebkitgtk3-lang-2.4.11-3.3 as a component of openSUSE Tumbleweed typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 as a component of openSUSE Tumbleweed typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 as a component of openSUSE Tumbleweed typelib-1_0-WebKit-1_0-2.4.11-3.3 as a component of openSUSE Tumbleweed typelib-1_0-WebKit-3_0-2.4.11-3.3 as a component of openSUSE Tumbleweed webkit-jsc-1-2.4.11-3.3 as a component of openSUSE Tumbleweed webkit-jsc-3-2.4.11-3.3 as a component of openSUSE Tumbleweed Use-after-free vulnerability in the SVG implementation in WebKit, as used in Google Chrome before 22.0.1229.94, allows remote attackers to execute arbitrary code via unspecified vectors. CVE-2012-5112 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 10 AV:N/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5112.html CVE-2012-5112 https://bugzilla.suse.com/786698 SUSE Bug 786698 Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG filters. CVE-2012-5133 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-5133.html CVE-2012-5133 https://bugzilla.suse.com/791234 SUSE Bug 791234 WebKit, as used in Apple Safari before 6.1.4 and 7.x before 7.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-05-21-1. CVE-2014-1344 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1344.html CVE-2014-1344 https://bugzilla.suse.com/879607 SUSE Bug 879607 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1384 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1384.html CVE-2014-1384 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1385 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1385.html CVE-2014-1385 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1386 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1386.html CVE-2014-1386 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1387 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1387.html CVE-2014-1387 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1388 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1388.html CVE-2014-1388 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1389 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1389.html CVE-2014-1389 https://bugzilla.suse.com/892084 SUSE Bug 892084 WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. CVE-2014-1390 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1390.html CVE-2014-1390 https://bugzilla.suse.com/892084 SUSE Bug 892084 The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame. CVE-2014-1748 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 5 AV:N/AC:L/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-1748.html CVE-2014-1748 https://bugzilla.suse.com/909707 SUSE Bug 909707 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1. CVE-2015-1071 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1071.html CVE-2015-1071 https://bugzilla.suse.com/923223 SUSE Bug 923223 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1. CVE-2015-1076 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1076.html CVE-2015-1076 https://bugzilla.suse.com/923223 SUSE Bug 923223 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1. CVE-2015-1081 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1081.html CVE-2015-1081 https://bugzilla.suse.com/923223 SUSE Bug 923223 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1. CVE-2015-1083 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1083.html CVE-2015-1083 https://bugzilla.suse.com/923223 SUSE Bug 923223 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-04-08-1, APPLE-SA-2015-04-08-3, and APPLE-SA-2015-04-08-4. CVE-2015-1120 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1120.html CVE-2015-1120 https://bugzilla.suse.com/928380 SUSE Bug 928380 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.3, Apple TV before 7.2, and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-04-08-1, APPLE-SA-2015-04-08-3, and APPLE-SA-2015-04-08-4. CVE-2015-1122 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1122.html CVE-2015-1122 https://bugzilla.suse.com/1082221 SUSE Bug 1082221 https://bugzilla.suse.com/928380 SUSE Bug 928380 https://bugzilla.suse.com/971460 SUSE Bug 971460 The private-browsing implementation in WebKit in Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 places browsing history into an index, which might allow local users to obtain sensitive information by reading index entries. CVE-2015-1127 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1127.html CVE-2015-1127 https://bugzilla.suse.com/928380 SUSE Bug 928380 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-1152 and CVE-2015-1154. CVE-2015-1153 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1153.html CVE-2015-1153 https://bugzilla.suse.com/971460 SUSE Bug 971460 The history implementation in WebKit, as used in Apple Safari before 6.2.6, 7.x before 7.1.6, and 8.x before 8.0.6, allows remote attackers to bypass the Same Origin Policy and read arbitrary files via a crafted web site. CVE-2015-1155 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1155.html CVE-2015-1155 https://bugzilla.suse.com/1082221 SUSE Bug 1082221 https://bugzilla.suse.com/971460 SUSE Bug 971460 Late TLS certificate verification in WebKitGTK+ prior to 2.6.6 allows remote attackers to view a secure HTTP request, including, for example, secure cookies. CVE-2015-2330 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2330.html CVE-2015-2330 https://bugzilla.suse.com/922895 SUSE Bug 922895 The Page Loading functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly consider redirects during decisions about sending an Origin header, which makes it easier for remote attackers to bypass CSRF protection mechanisms via a crafted web site. CVE-2015-3658 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3658.html CVE-2015-3658 https://bugzilla.suse.com/971460 SUSE Bug 971460 The SQLite authorizer in the Storage functionality in WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict access to SQL functions, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted web site. CVE-2015-3659 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3659.html CVE-2015-3659 https://bugzilla.suse.com/936835 SUSE Bug 936835 https://bugzilla.suse.com/936836 SUSE Bug 936836 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site's database via a crafted web site. CVE-2015-3727 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3727.html CVE-2015-3727 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3731 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3731.html CVE-2015-3731 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3741 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3741.html CVE-2015-3741 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3743 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3743.html CVE-2015-3743 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3745 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3745.html CVE-2015-3745 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3747 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3747.html CVE-2015-3747 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3748 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3748.html CVE-2015-3748 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-08-13-1 and APPLE-SA-2015-08-13-3. CVE-2015-3749 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3749.html CVE-2015-3749 https://bugzilla.suse.com/971460 SUSE Bug 971460 The Content Security Policy implementation in WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly restrict cookie transmission for report requests, which allows remote attackers to obtain sensitive information via vectors involving (1) a cross-origin request or (2) a private-browsing request. CVE-2015-3752 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3752.html CVE-2015-3752 https://bugzilla.suse.com/971460 SUSE Bug 971460 The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain sensitive image information via vectors involving a CANVAS element. CVE-2015-5788 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5788.html CVE-2015-5788 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. CVE-2015-5794 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5794.html CVE-2015-5794 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. CVE-2015-5801 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5801.html CVE-2015-5801 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. CVE-2015-5809 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5809.html CVE-2015-5809 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in JavaScriptCore in Apple iOS before 9 and iTunes before 12.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-09-16-1 and APPLE-SA-2015-09-16-3. CVE-2015-5822 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5822.html CVE-2015-5822 https://bugzilla.suse.com/971460 SUSE Bug 971460 WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2015-10-21-1, APPLE-SA-2015-10-21-3, and APPLE-SA-2015-10-21-5. CVE-2015-5928 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libjavascriptcoregtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-1_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-3_0-0-32bit-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk2-lang-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-devel-2.4.11-3.3 openSUSE Tumbleweed:libwebkitgtk3-lang-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-JavaScriptCore-3_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-1_0-2.4.11-3.3 openSUSE Tumbleweed:typelib-1_0-WebKit-3_0-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-1-2.4.11-3.3 openSUSE Tumbleweed:webkit-jsc-3-2.4.11-3.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5928.html CVE-2015-5928 https://bugzilla.suse.com/971460 SUSE Bug 971460