#12741 closed enhancement (fixed)

WebKitGTK 2.26.2

Reported by: Douglas R. Reno Owned by: Bruce Dubbs
Priority: high Milestone: 9.1
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

New point version

What's new in the WebKitGTK 2.26.2 release?
===========================================

  - Improve performance of querying system fallback fonts.
  - Don't use prgname in dbus-proxy socket path.
  - Fix thread-safety issues in image decoders.
  - Fix the build with WebDriver disabled.
  - Disable accelerated compositing when we fail to initialize the EGL dispaly under Wayland.
  - Fill the objects category in emoji picker.
  - Fix several crashes and rendering issues.

Change History (3)

comment:1 by Bruce Dubbs, 21 months ago

Owner: changed from blfs-book to Bruce Dubbs
Status: newassigned

comment:2 by Douglas R. Reno, 21 months ago

Priority: normalhigh
CVE-2019-8812
    Versions affected: WebKitGTK before 2.26.2 and WPE WebKit before
    2.26.2.
    Credit to an anonymous researcher.
    Impact: Processing maliciously crafted web content may lead to
    arbitrary code execution. Description: Multiple memory corruption
    issues were addressed with improved memory handling.
CVE-2019-8814
    Versions affected: WebKitGTK before 2.26.2 and WPE WebKit before
    2.26.2.
    Credit to Cheolung Lee of LINE+ Security Team.
    Impact: Processing maliciously crafted web content may lead to
    arbitrary code execution. Description: Multiple memory corruption
    issues were addressed with improved memory handling.

comment:3 by Bruce Dubbs, 21 months ago

Resolution: fixed
Status: assignedclosed

Fixed at revision 22359.

Note: See TracTickets for help on using tickets.