ALSA-2025:18097

[ALSA-2025:18097] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2025-10-23

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.  

Security Fix(es):  

  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43272)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43342)
  * webkitgtk: A website may be able to access sensor information without user consent (CVE-2025-43356)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43368)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43343)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-2.50.1-0.el9_6.aarch64.rpm	01459124a1e11324304555d9282488f6ca29695192ea7f4189679f20c4434651
aarch64	webkit2gtk3-devel-2.50.1-0.el9_6.aarch64.rpm	016c039444beb01fddbb50d6816bd9fd8c743c3ab1565450994cf5f64d0bf713
aarch64	webkit2gtk3-jsc-2.50.1-0.el9_6.aarch64.rpm	23da4c963bc4eb3aebb7dd85147b77ff24a0775c57268caad82409f947d27a1d
aarch64	webkit2gtk3-jsc-devel-2.50.1-0.el9_6.aarch64.rpm	4db640ec0602cfaf7406e45b0e6fd0bb542ff128f60919c95be4cbc0c1d6a841
i686	webkit2gtk3-jsc-2.50.1-0.el9_6.i686.rpm	05382c22451a7e74981c5cdcf23e75ceef320824e1dd30f0070f962b6dfd1007
i686	webkit2gtk3-devel-2.50.1-0.el9_6.i686.rpm	8215252b9f7aa7f99f56b4bd3110a6ec38e20123b5f4f0bf660465c93935bea6
i686	webkit2gtk3-jsc-devel-2.50.1-0.el9_6.i686.rpm	8844521817e8d2f216f07dd0c67304dffe894ad4b1181be97eeae4f4ab155f03
i686	webkit2gtk3-2.50.1-0.el9_6.i686.rpm	ef2c4b70c1ad99208a46d0d55b0d66460bbcef7252ca1d3137944a0217ec7ded
ppc64le	webkit2gtk3-jsc-2.50.1-0.el9_6.ppc64le.rpm	1b4813454771a0995a1b0f1af1b22cceebfee043c9ed41e39a7de7bb56e6d8f5
ppc64le	webkit2gtk3-devel-2.50.1-0.el9_6.ppc64le.rpm	4921853d4e56025dfe2d22efa8eb5361cb58fb83c732014484268d6a0141f374
ppc64le	webkit2gtk3-2.50.1-0.el9_6.ppc64le.rpm	b15543126ab3b3565aee4d2f51fa1c38f29ea65e4025ae966f40c477abee5b65
ppc64le	webkit2gtk3-jsc-devel-2.50.1-0.el9_6.ppc64le.rpm	de41c7f01dd75421ceea92c92e4467dd40b2c54aff9db1050e0673683e9cb7b3
s390x	webkit2gtk3-jsc-2.50.1-0.el9_6.s390x.rpm	3131dc88ee1b226cba35a1f92799845c0e387e6515cda435f9845d94be44b0d4
s390x	webkit2gtk3-devel-2.50.1-0.el9_6.s390x.rpm	4430be468a902081441dd75c3439d66f932c221c83a43da3d1ce19f473714a0b
s390x	webkit2gtk3-2.50.1-0.el9_6.s390x.rpm	4863f6eb0d1a822250719faa8b66eeb4b67a16226c3f2afa814b0ab2694baa70
s390x	webkit2gtk3-jsc-devel-2.50.1-0.el9_6.s390x.rpm	d78778593ff1574bd7285b738dde65a142d2f843c61472e63fc3058443bb3a37
x86_64	webkit2gtk3-jsc-2.50.1-0.el9_6.x86_64.rpm	18cb72d458668f203374cf17e4f2f813e307ad161673f0821c346edf8ce0cba6
x86_64	webkit2gtk3-jsc-devel-2.50.1-0.el9_6.x86_64.rpm	3bb7233a6c145e22c66d6860f1aee63e5c473698ed1daa82c083b25a1e4efb3a
x86_64	webkit2gtk3-2.50.1-0.el9_6.x86_64.rpm	58ddcadb7349c77c7d18b5ab7f4b2dd06af08e074f68aa9eb00c014bd0e66b18
x86_64	webkit2gtk3-devel-2.50.1-0.el9_6.x86_64.rpm	ba50504b4edcce73a5f95a498c519429d4366784d1ed1c77ddecca169f27fc99

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.