WebKitGTK Security Advisory WSA-2020-0002 describes the following issue: CVE-2020-3867 Impact: Processing maliciously crafted web content may lead to universal cross site scripting. Description: A logic issue was addressed with improved state management. Versions affected: WebKitGTK before 2.26.4 and WPE WebKit before 2.26.4.
External References: https://webkitgtk.org/security/WSA-2020-0002.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:4035 https://access.redhat.com/errata/RHSA-2020:4035
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-3867
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:4451 https://access.redhat.com/errata/RHSA-2020:4451
*** Bug 2000358 has been marked as a duplicate of this bug. ***