ALSA-2025:20922

[ALSA-2025:20922] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2025-11-19

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.  

Security Fix(es):  

  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43272)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43342)
  * webkitgtk: A website may be able to access sensor information without user consent (CVE-2025-43356)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43368)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43343)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-2.50.1-1.el9_7.aarch64.rpm	42c9974715f412ca4732e1d555ad0bbb3b2d6ab29f55eec88e2d1c5b4ee8165c
aarch64	webkit2gtk3-jsc-2.50.1-1.el9_7.aarch64.rpm	953ce65677f50b5e287af1e42a55a4e5342e5cd4ec0893a2654a0a7ba57e78b2
aarch64	webkit2gtk3-devel-2.50.1-1.el9_7.aarch64.rpm	b9c7368d88ffeb75141845c797a69717796d3d76cc19c6b7d35d050b97423fe1
aarch64	webkit2gtk3-jsc-devel-2.50.1-1.el9_7.aarch64.rpm	ffb4f1091e4895bafca7131c1a1e77a45b627a39aa91d83407c41e2d11bed303
i686	webkit2gtk3-jsc-devel-2.50.1-1.el9_7.i686.rpm	10cf183a992eade85fb6f0f69b4043f4a8685d05b7b29d9858494293fabe1f83
i686	webkit2gtk3-devel-2.50.1-1.el9_7.i686.rpm	25f6b28b4cccecd39608d946193199bbbc6ebdc81dd3725b96b9b8a3e83fcc22
i686	webkit2gtk3-2.50.1-1.el9_7.i686.rpm	927b19e54c3ad950322d18cf02aca260fcd03f0c8be400e34bf71b506d4ac7ca
i686	webkit2gtk3-jsc-2.50.1-1.el9_7.i686.rpm	e9c91560b8ff3f454de74aa097020daeea52c1c054bca8acc27ad53e66bea82f
ppc64le	webkit2gtk3-jsc-2.50.1-1.el9_7.ppc64le.rpm	8abd1f951288807af8b14f82de151d2741f28c676e010b465adac86aab189f02
ppc64le	webkit2gtk3-jsc-devel-2.50.1-1.el9_7.ppc64le.rpm	a35dea1ec1832d77f8e12f1da991e84cdbcb3726924d1b5daef303954d895dc5
ppc64le	webkit2gtk3-devel-2.50.1-1.el9_7.ppc64le.rpm	dfe79afa1de7be496b4017015ce20f64eab68b9c597daad9b9c149c4deab0df6
ppc64le	webkit2gtk3-2.50.1-1.el9_7.ppc64le.rpm	f5a800791d16b502ca90bbfd340bec13ebd9823a7264a29e59cb8f1309674c09
s390x	webkit2gtk3-devel-2.50.1-1.el9_7.s390x.rpm	06cd0bdac4107745a28dddf0155d4b7414d147a7481815f8a80da92a117df082
s390x	webkit2gtk3-jsc-devel-2.50.1-1.el9_7.s390x.rpm	6e8567cf8aeb2344df7b396502990e0a0a769cc7897a57c3cbfb9ae7a9c51bee
s390x	webkit2gtk3-2.50.1-1.el9_7.s390x.rpm	bde8e614b7d1a025f5ea001f69b47226cfc4b51e1034203266d792c322f35eb0
s390x	webkit2gtk3-jsc-2.50.1-1.el9_7.s390x.rpm	e903401312f65511dc4edf2448f294b276046b9796d661077bfcb5acd8546c5f
x86_64	webkit2gtk3-jsc-2.50.1-1.el9_7.x86_64.rpm	0ab62d37de6483d847acad2d0174e4f95ef2909196f136941f0a556e45ac1638
x86_64	webkit2gtk3-2.50.1-1.el9_7.x86_64.rpm	703ce4e2b79721341e3302147f176f64e681ec663dcbb2b725a7785c9c5974fb
x86_64	webkit2gtk3-devel-2.50.1-1.el9_7.x86_64.rpm	a33d24f088448a8caa86dd01aad19701f0c19c82885907a0b816c8e287e3887e
x86_64	webkit2gtk3-jsc-devel-2.50.1-1.el9_7.x86_64.rpm	f5edc612270d98fae83fd30c3054f7cd94ebe0278974bbfcff80405353b1ac76

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.