openSUSE Security Update : webkitgtk (openSUSE-2016-412)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for webkitgtk fixes the following issues :

- webkitgtk was updated to version 2.4.10 (boo#971460) :

+ Fix rendering of form controls and scrollbars with GTK+
>= 3.19.

+ Fix crashes on PPC64.

+ Fix the build on powerpc 32 bits.

+ Add ARM64 build support.

+ Security fixes: CVE-2015-1120, CVE-2015-1076,
CVE-2015-1071, CVE-2015-1081, CVE-2015-1122,
CVE-2015-1155, CVE-2014-1748, CVE-2015-3752,
CVE-2015-5809, CVE-2015-5928, CVE-2015-3749,
CVE-2015-3659, CVE-2015-3748, CVE-2015-3743,
CVE-2015-3731, CVE-2015-3745, CVE-2015-5822,
CVE-2015-3658, CVE-2015-3741, CVE-2015-3727,
CVE-2015-5801, CVE-2015-5788, CVE-2015-3747,
CVE-2015-5794, CVE-2015-1127, CVE-2015-1153,
CVE-2015-1083.

+ Updated translations.

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=971460

Solution :

Update the affected webkitgtk packages.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)