[webkit-gtk] WebKitGTK+ 2.14.6 released!

Carlos Alberto Lopez Perez clopez at igalia.com
Thu Apr 6 12:28:21 PDT 2017

On 06/04/17 17:09, Carlos Garcia Campos wrote:
> What's new in the WebKitGTK+ 2.14.6 release?
> ============================================
>   - Fix rendering issues in long documents with transparent background.
>   - Fix no-third-party cookies policy in case of redirections.
>   - Honor GTK+ font settings.
>   - Fix rendering artifacts when resizing the window in accelerated compositing mode.
>   - Remove flickering when leaving accelerated compositing mode.
>   - Fix web process deadlocks when destroying the media player.
>   - Properly handle copy drag and drop operations.
>   - Ensure we never try to load GTK2 plugins in Wayland.
>   - Fix a hang when sending an IPC messages fails because socket read buffers are full.
>   - Fix several crashes and rendering issues.
>   - Security fixes: CVE-2017-2369, CVE-2017-2460, CVE-2017-2470, CVE-2017-2475, CVE-2017-2481, CVE-2017-2476,
>     CVE-2017-2471, CVE-2017-2466, CVE-2017-2459, CVE-2017-2454, CVE-2017-2446, CVE-2017-2468, CVE-2017-2465,
>     CVE-2016-9643, CVE-2017-2377, CVE-2017-2364, CVE-2017-2367, CVE-2017-2442, CVE-2017-2419, CVE-2017-2392,
>     CVE-2017-2405, CVE-2017-2394.

There was a confusion here, CVE-2017-2369 was already fixed in 2.14.4.

And just to make this explicit: all this CVEs are also fixed on the 2.16
stable release.

The last stable version is always the most secure one.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 883 bytes
Desc: OpenPGP digital signature
URL: <https://lists.webkit.org/pipermail/webkit-gtk/attachments/20170406/7645b94e/attachment.sig>

More information about the webkit-gtk mailing list