Opened 5 months ago
Closed 5 months ago
#20597 closed enhancement (fixed)
webkitgtk-2.46.3
| Reported by: | Douglas R. Reno | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 12.3 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New point version
What's new in the WebKitGTK 2.46.3 release? =========================================== - Flatten layers to a plane when preseve-3d style is set. - Fix DuckDuckGo links by adding a user agent quirk. - Fix several crashes and rendering issues.
Change History (5)
comment:1 by , 5 months ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 5 months ago
comment:3 by , 5 months ago
| Priority: | normal → elevated |
|---|
comment:4 by , 5 months ago
Fixed at 1b39e5ae6e017ff5eee5d9a1c0b6ac4854889516
Leaving open for a security advisory (which should come shortly)
Note:
See TracTickets
for help on using tickets.
CVE-2024-44244 Versions affected: WebKitGTK and WPE WebKit before 2.46.3. Credit to an anonymous researcher, Q1IQ (@q1iqF) and P1umer (@p1umer). Impact: Processing maliciously crafted web content may lead to an unexpected process crash Description: A memory corruption issue was addressed with improved input validation. WebKit Bugzilla: 279780 CVE-2024-44296 Versions affected: WebKitGTK and WPE WebKit before 2.46.3. Credit to Narendra Bhati, Manager of Cyber Security at Suma Soft Pvt. Ltd, Pune (India). Impact: Processing maliciously crafted web content may prevent Content Security Policy from being enforced Description: The issue was addressed with improved checks. WebKit Bugzilla: 278765