WebkitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution. webkit-gtk 2018-08-22 2018-08-22 652820 658168 662974 remote 2.20.4 2.20.4

WebKitGTK+ is a full-featured port of the WebKit rendering engine, suitable for projects requiring any kind of web integration, from hybrid HTML/CSS applications to full-fledged web browsers.

Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the referenced CVE identifiers for details.

A remote attacker could execute arbitrary commands or cause a denial of service condition via a maliciously crafted web content.

There is no known workaround at this time.

All WebkitGTK+ users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=net-libs/webkit-gtk-2.20.4" CVE-2018-11646 CVE-2018-11712 CVE-2018-11713 CVE-2018-12293 CVE-2018-12294 CVE-2018-4101 CVE-2018-4113 CVE-2018-4114 CVE-2018-4117 CVE-2018-4118 CVE-2018-4119 CVE-2018-4120 CVE-2018-4121 CVE-2018-4122 CVE-2018-4125 CVE-2018-4127 CVE-2018-4128 CVE-2018-4129 CVE-2018-4133 CVE-2018-4146 CVE-2018-4162 CVE-2018-4163 CVE-2018-4165 CVE-2018-4190 CVE-2018-4192 CVE-2018-4199 CVE-2018-4200 CVE-2018-4201 CVE-2018-4204 CVE-2018-4214 CVE-2018-4218 CVE-2018-4222 CVE-2018-4232 CVE-2018-4233 CVE-2018-4261 CVE-2018-4262 CVE-2018-4263 CVE-2018-4264 CVE-2018-4265 CVE-2018-4266 CVE-2018-4267 CVE-2018-4270 CVE-2018-4272 CVE-2018-4273 CVE-2018-4278 CVE-2018-4284 WebKitGTK+ Security Advisory WSA-2018-0003 WebKitGTK+ Security Advisory WSA-2018-0004 WebKitGTK+ Security Advisory WSA-2018-0005 WebKitGTK+ Security Advisory WSA-2018-0006 whissi irishluck83