SUSE CVE-2018-11712

🗓️ 15 Feb 2023 04:27:14Reported by Suse CVEType

SUSE vulnerability 2018-11712: Libsoup backend in WebKit GTK+ 2.20.0/2.20.1 failed certificate verification for WebSocket connections.

Reporter	Title	Published	Views	Family All 31
Cent OS	PackageKit, accountsservice, adwaita, appstream, at, atk, baobab, bolt, brasero, cairo, cheese, clutter, compat, control, dconf, devhelp, ekiga, empathy, eog, evince, evolution, file, flatpak, folks, fontconfig, freetype, fribidi, fwupd, fwupdate, gcr, gdk, gdm, gedit, geoclue2, geocode, gjs, glade, glib, glib2, glibmm24, gnome, gnote, gobject, gom, google, grilo, gsettings, gspell, gssdp, gstreamer1, gtk, gtk3, gtksourceview3, gucharmap, gupnp, gvfs, harfbuzz, json, libappstream, libchamplain, libcroco, libgdata, libgee, libgepub, libgexiv2, libgnomekbd, libgovirt, libgtop2, libgweather, libgxps, libical, libmediaart, libosinfo, libpeas, librsvg2, libsecret, libsoup, libwayland, libwnck3, mozjs52, mutter, nautilus, openchange, osinfo, pango, poppler, python2, rest, rhythmbox, seahorse, shotwell, sushi, totem, upower, vala, valadoc, vino, vte, vte291, wayland, webkitgtk4, xdg, yelp, zenity security update	15 Nov 201818:43	–	centos
CVE	CVE-2018-11712	4 Jun 201814:00	–	cve
Cvelist	CVE-2018-11712	4 Jun 201814:00	–	cvelist
Debian CVE	CVE-2018-11712	4 Jun 201814:00	–	debiancve
EUVD	EUVD-2018-3731	7 Oct 202500:30	–	euvd
Tenable Nessus	GLSA-201808-04 : WebkitGTK+: Multiple vulnerabilities	23 Aug 201800:00	–	nessus
Tenable Nessus	openSUSE Security Update : webkit2gtk3 (openSUSE-2018-1288)	26 Oct 201800:00	–	nessus
Tenable Nessus	RHEL 7 : GNOME (RHSA-2018:3140)	5 Nov 201800:00	–	nessus
Tenable Nessus	RHEL 6 : webkitgtk (Unpatched Vulnerability)	11 May 202400:00	–	nessus
Tenable Nessus	RHEL 7 : webkitgtk (Unpatched Vulnerability)	11 May 202400:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Leap	15.4	any	webkit2gtk-4.1-lang	2.36.0-150400.2.13	WebKit2GTK-4.1-lang-2.36.0-150400.2.13.noarch.rpm
OpenSUSE Leap	15.4	any	webkit2gtk-5.0-lang	2.36.0-150400.2.12	WebKit2GTK-5.0-lang-2.36.0-150400.2.12.noarch.rpm
SUSE Linux Enterprise Desktop	15.6	any	webkitgtk-4.0-lang	2.42.5-150600.10.35	WebKitGTK-4.0-lang-2.42.5-150600.10.35.noarch.rpm
SUSE Linux Enterprise Server	15.6	any	webkitgtk-4.0-lang	2.42.5-150600.10.35	WebKitGTK-4.0-lang-2.42.5-150600.10.35.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15.6	any	webkitgtk-4.0-lang	2.42.5-150600.10.35	WebKitGTK-4.0-lang-2.42.5-150600.10.35.noarch.rpm
SUSE Linux Enterprise Desktop	15.7	any	webkitgtk-4.0-lang	2.48.1-150600.12.36.5	WebKitGTK-4.0-lang-2.48.1-150600.12.36.5.noarch.rpm
SUSE Linux Enterprise Server	15.7	any	webkitgtk-4.0-lang	2.48.1-150600.12.36.5	WebKitGTK-4.0-lang-2.48.1-150600.12.36.5.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	15.7	any	webkitgtk-4.0-lang	2.48.1-150600.12.36.5	WebKitGTK-4.0-lang-2.48.1-150600.12.36.5.noarch.rpm
SUSE Linux Enterprise Desktop	15.6	any	webkitgtk-4.1-lang	2.42.5-150600.10.35	WebKitGTK-4.1-lang-2.42.5-150600.10.35.noarch.rpm
SUSE Linux Enterprise Server	15.6	any	webkitgtk-4.1-lang	2.42.5-150600.10.35	WebKitGTK-4.1-lang-2.42.5-150600.10.35.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2018-11712
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1096061
bugzilla	www.bugzilla.suse.com/1097693
lists	www.lists.suse.com/pipermail/sle-security-updates/2018-October/004781.html
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/BDAK2MVOAPTEET4XJ6HHZXTMPNQCVMAW/

07 Jun 2026 05:45Current

6.9Medium risk

Vulners AI Score6.9

CVSS 35.3

EPSS0.00216