vulnerability

SUSE: CVE-2018-11712: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Jun 4, 2018	Oct 25, 2018	Jun 20, 2021

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Jun 4, 2018

Added

Oct 25, 2018

Modified

Jun 20, 2021

Description

WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ versions 2.20.0 and 2.20.1, failed to perform TLS certificate verification for WebSocket connections.

Solution(s)

suse-upgrade-libjavascriptcoregtk-4_0-18suse-upgrade-libwebkit2gtk-4_0-37suse-upgrade-libwebkit2gtk3-langsuse-upgrade-typelib-1_0-javascriptcore-4_0suse-upgrade-typelib-1_0-webkit2-4_0suse-upgrade-typelib-1_0-webkit2webextension-4_0suse-upgrade-webkit2gtk-4_0-injected-bundlessuse-upgrade-webkit2gtk3-devel

References

SUSE-SUSE-SU-2018:3387-1
NVD-CVE-2018-11712

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today