ALSA-2025:2034

[ALSA-2025:2034] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2025-03-11

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.  

Security Fix(es):  

  * webkitgtk: Processing maliciously crafted web content may lead to memory corruption (CVE-2024-54543)
  * webkitgtk: A maliciously crafted webpage may be able to fingerprint the user (CVE-2025-24143)
  * webkitgtk: Copying a URL from Web Inspector may lead to command injection (CVE-2025-24150)
  * webkitgtk: Processing web content may lead to a denial-of-service (CVE-2025-24158)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-24162)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-devel-2.46.6-1.el8_10.aarch64.rpm	0a1607510a57a5dfba6d31b0ed5a54e3f2322db3abc263d3a3668d7a5ac15bfe
aarch64	webkit2gtk3-2.46.6-1.el8_10.aarch64.rpm	21dc137eba3dfd5322bf2f676f42ad1dbae3a05126a593f5c7d7b0b1aee6ed5d
aarch64	webkit2gtk3-jsc-2.46.6-1.el8_10.aarch64.rpm	241357766a488d98fa3345d2b38c9220ea211070fe21d324a5773913a3e47b38
aarch64	webkit2gtk3-jsc-devel-2.46.6-1.el8_10.aarch64.rpm	cc3ca68497677ef7c44b6a69c2989bc4f3ddda74c42a6274036ad9909da60157
i686	webkit2gtk3-jsc-devel-2.46.6-1.el8_10.i686.rpm	5a9146074f1a03fd23ebb943a681426e64c3e669486d436f8120b388c854a465
i686	webkit2gtk3-jsc-2.46.6-1.el8_10.i686.rpm	811697e63c70963f96fba904f30d8b88278a76b7eed20e796b2ab8bea938a29a
i686	webkit2gtk3-2.46.6-1.el8_10.i686.rpm	b0c97f87334f93d5783a31600c6a9c15a35002100ab258623e32d04b87a1c187
i686	webkit2gtk3-devel-2.46.6-1.el8_10.i686.rpm	de0452c8a1a221498d3bc43b0a9a23a440598947975bb3697da816a1fa4646fb
ppc64le	webkit2gtk3-jsc-devel-2.46.6-1.el8_10.ppc64le.rpm	2a523795327df78af26107472f4ff3bf6e86caafebccc222322ba0f4306444f9
ppc64le	webkit2gtk3-jsc-2.46.6-1.el8_10.ppc64le.rpm	7d8f8ccdfc80eb96e4ec0640269418a2e76ea0a9215e48e2c07009512b4f8934
ppc64le	webkit2gtk3-2.46.6-1.el8_10.ppc64le.rpm	895a63a81bc679d782a8cfcbf6447de327b1d68db4357b09d66da3d92967b56b
ppc64le	webkit2gtk3-devel-2.46.6-1.el8_10.ppc64le.rpm	ff814833eeb1e9c964d6b5389b3047c51639cf3b7f379d66934396dc084c6c09
s390x	webkit2gtk3-2.46.6-1.el8_10.s390x.rpm	2aff84cf72cc0a213c236e0fe7d287e2e0dc19660c53957b4d255c2b0a334c7a
s390x	webkit2gtk3-devel-2.46.6-1.el8_10.s390x.rpm	481a340ee5996c3a1ae24ce9710d4d37914c1cb1e500ecd194b4839aae34230b
s390x	webkit2gtk3-jsc-devel-2.46.6-1.el8_10.s390x.rpm	9fa0858a0c22bff6928612766320db4502e74f1c747b33acd06c600fdf7bc7a9
s390x	webkit2gtk3-jsc-2.46.6-1.el8_10.s390x.rpm	a9c50bc19058ed09b71b0ebe0b114ed61aa0407357c3393814350fb44aee9b06
x86_64	webkit2gtk3-2.46.6-1.el8_10.x86_64.rpm	3cf173264db5727c021e46aa0855bf148243ab722b6b53b63cd43780386e542f
x86_64	webkit2gtk3-jsc-2.46.6-1.el8_10.x86_64.rpm	3e2a58903f17d6a61f4f29982e3e1625d89ea208f63e184464bf7bb8b8d7066a
x86_64	webkit2gtk3-jsc-devel-2.46.6-1.el8_10.x86_64.rpm	7b6a8ebdf957991075a8e68f18d611b7c0de87af15968ca80253d098ff75fdfa
x86_64	webkit2gtk3-devel-2.46.6-1.el8_10.x86_64.rpm	7df44e7518bbd8e9caa69209295be569f7ba3fd113d8ab7797a3d14a8aa85eb9

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.