ALSA-2025:2035

[ALSA-2025:2035] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2025-03-11

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.  

Security Fix(es):  

  * webkitgtk: Processing maliciously crafted web content may lead to memory corruption (CVE-2024-54543)
  * webkitgtk: A maliciously crafted webpage may be able to fingerprint the user (CVE-2025-24143)
  * webkitgtk: Copying a URL from Web Inspector may lead to command injection (CVE-2025-24150)
  * webkitgtk: Processing web content may lead to a denial-of-service (CVE-2025-24158)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-24162)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-devel-2.46.6-1.el9_5.aarch64.rpm	1197fa0dbed3e5c274b97ef406ce6437f3f8228087b68fba899c5b76b7c57bbe
aarch64	webkit2gtk3-2.46.6-1.el9_5.aarch64.rpm	3626298229ba4034e4b3f67394fedc4f6ddf8bf8d403fd6361da2ff794551d05
aarch64	webkit2gtk3-jsc-2.46.6-1.el9_5.aarch64.rpm	c6ef1315ef9002095dd88fc06cd7d1072fe9d2cdf2e9cc2819cc4b72aa1107ca
aarch64	webkit2gtk3-jsc-devel-2.46.6-1.el9_5.aarch64.rpm	e78748eea6e5c434f228f61ffa3ba0c422b2b6996e6009465f075fa42b554e62
i686	webkit2gtk3-jsc-2.46.6-1.el9_5.i686.rpm	8be2260729f42a2f1d88da4dd173f3c7bf7fb0408e3f71d10a62202f290ab9fe
i686	webkit2gtk3-devel-2.46.6-1.el9_5.i686.rpm	9e0c07064051ca929923e183fbd09062cb019cb836dde7a34ea907b18c6fd8b8
i686	webkit2gtk3-2.46.6-1.el9_5.i686.rpm	c35ba768194f64d13e90d36d07e50eea74bf51d22a586a91e8c30fbde482fb3f
i686	webkit2gtk3-jsc-devel-2.46.6-1.el9_5.i686.rpm	dd4fe97178040975e3b35c1dba384df21782cd91b127b3c43fabcd2c2e5b6d95
ppc64le	webkit2gtk3-jsc-2.46.6-1.el9_5.ppc64le.rpm	10941641f1f8133f7145cad0f21c9fafee96f4d0228ee3c33e43b9d4ec2c6635
ppc64le	webkit2gtk3-2.46.6-1.el9_5.ppc64le.rpm	298daa27b0b0b75a33166d264c449827243d82760c6f032895066b78d802b962
ppc64le	webkit2gtk3-jsc-devel-2.46.6-1.el9_5.ppc64le.rpm	37ae15ab9ff6f1837fc05c9f478ceb3fba085e1844f7a377d3cdf579ddf91490
ppc64le	webkit2gtk3-devel-2.46.6-1.el9_5.ppc64le.rpm	ddbd31e0bb15b29717fa23d13f59f85d1280aa32bfc5e299d04017ff9df1ead4
s390x	webkit2gtk3-devel-2.46.6-1.el9_5.s390x.rpm	15035e2ef0908b953ea9fbde013dfe12377d6c4de191d28fb5e206e67a4ad469
s390x	webkit2gtk3-jsc-2.46.6-1.el9_5.s390x.rpm	d19440f6527b5b037bb09cde2c60e68342ba8993d7cf75c8d9292cd1b413b5a6
s390x	webkit2gtk3-jsc-devel-2.46.6-1.el9_5.s390x.rpm	dca2bbc6c9730aba45f1e1e63596569a26515d5bae2f05eb0db6afb66bfc979f
s390x	webkit2gtk3-2.46.6-1.el9_5.s390x.rpm	fb84256fd36d84cec117634baf7a6ef97d0d41f1fe33fa014ebb11eb5c1e75fb
x86_64	webkit2gtk3-2.46.6-1.el9_5.x86_64.rpm	209f2fd897d3c54b1cf0e07482c1aaedeec7ce805abf6b10069640f0670e2711
x86_64	webkit2gtk3-devel-2.46.6-1.el9_5.x86_64.rpm	3e10e8c3f744c6870a6d8c4381e1ca7087284cf5baca5fc5029c547b8042a922
x86_64	webkit2gtk3-jsc-devel-2.46.6-1.el9_5.x86_64.rpm	455096f976a16bdca20e5aad68cb75131941ed468fa08da5b4f0f8f7cfd6cf91
x86_64	webkit2gtk3-jsc-2.46.6-1.el9_5.x86_64.rpm	5118c62026beccfb03c865d5124cb0fd949eb7d21a514edf1e4870a0b48083a5

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.