ALSA-2025:3713

[ALSA-2025:3713] Important: webkit2gtk3 security update

Type:

security

Severity:

important

Release date:

2025-04-09

Description:

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.  

Security Fix(es):  

  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44192)
  * webkitgtk: A malicious website may exfiltrate data cross-origin (CVE-2024-54467)
  * webkitgtk: Processing web content may lead to a denial-of-service (CVE-2024-54551)
  * webkitgtk: Loading a malicious iframe may lead to a cross-site scripting attack (CVE-2025-24208)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-24209)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-24216)
  * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-30427)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	webkit2gtk3-jsc-2.48.1-1.el9_5.aarch64.rpm	0d50962fc422c8b50fcf98a28d33446069a052b554d2fda901a7d9cb5bf81672
aarch64	webkit2gtk3-2.48.1-1.el9_5.aarch64.rpm	5d98bbb98ec63ad2c283ac1cb5f7f25f12af18e92edbb32222636450bf8e36ce
aarch64	webkit2gtk3-devel-2.48.1-1.el9_5.aarch64.rpm	7e0cf2c1510a53637222e942bae646b763e8a98dfc7e43924275fb2cfbbac479
aarch64	webkit2gtk3-jsc-devel-2.48.1-1.el9_5.aarch64.rpm	e28527b9642a9d3e90976ef93a86a9d0e433f2b09ecf72e0c94fba37b2afba02
i686	webkit2gtk3-devel-2.48.1-1.el9_5.i686.rpm	08c5614ed5e8162347dbb1225ede15fd9de679e5eababf1664e60a43329c2323
i686	webkit2gtk3-2.48.1-1.el9_5.i686.rpm	4e6763870ab51562ef1ad38d0bf2b3c948fc07576e9dfd8fb2f17679e76515a6
i686	webkit2gtk3-jsc-devel-2.48.1-1.el9_5.i686.rpm	98069ec70148aecce43ab1ec516e4c3c9f47998a3a67e4a15a7b8c4ec9043890
i686	webkit2gtk3-jsc-2.48.1-1.el9_5.i686.rpm	a87c13a5c13dfcd4e16e1f19de8e746fff40c2706b9bc932d42491517e04be0a
ppc64le	webkit2gtk3-jsc-devel-2.48.1-1.el9_5.ppc64le.rpm	6035ee3b1e3950b74ba07a0aba77ccdc1a27d8a6d840943a49d15e549e39ed7c
ppc64le	webkit2gtk3-devel-2.48.1-1.el9_5.ppc64le.rpm	6c5807d0446e8b24141dbbc6fb40bc2c1a48e50cc4b0a3f2ff3dc26942c45a7a
ppc64le	webkit2gtk3-2.48.1-1.el9_5.ppc64le.rpm	9dd38c026bc2beab4a2878bdcf5f19e4919a7a35074d273500969f75b991672f
ppc64le	webkit2gtk3-jsc-2.48.1-1.el9_5.ppc64le.rpm	a09d75b5b82f20741f494d8e5001346a2433bf55a1b479088c14ab0eccf12d25
s390x	webkit2gtk3-2.48.1-1.el9_5.s390x.rpm	1f33e2bd796aabf0ecb84249ffb063ca2ac256c03f4e953592a51946d39ad29d
s390x	webkit2gtk3-devel-2.48.1-1.el9_5.s390x.rpm	236f433ba9ab86ed1a7ad85a97b9f87272bfd7052b6b986be4fc7b814220b64a
s390x	webkit2gtk3-jsc-devel-2.48.1-1.el9_5.s390x.rpm	4625c145b3e114d29864895f1dda3ae6903591dd8e4c9df95daf1f7d3fb9b83c
s390x	webkit2gtk3-jsc-2.48.1-1.el9_5.s390x.rpm	e7ff8f567b1f90999cf97459be849d5299ea4d558a903afaf7b7e0f3d7267a19
x86_64	webkit2gtk3-2.48.1-1.el9_5.x86_64.rpm	2cc6db8863d16e56d36391b29155b27c7b6e8570802bb084562785e1a332e11a
x86_64	webkit2gtk3-jsc-2.48.1-1.el9_5.x86_64.rpm	8c070332cb3616cbee96d46d9860d85a22a84f58c9b1c0785aa0ba861246f62e
x86_64	webkit2gtk3-jsc-devel-2.48.1-1.el9_5.x86_64.rpm	c8702f5622819665536eac546ce6703d6262f2753e79e72ad5199e62755308d2
x86_64	webkit2gtk3-devel-2.48.1-1.el9_5.x86_64.rpm	e8f8a298fb87c93fbee39a5c2031c65bbea156e0b34607f7d27198ca7da1e28a

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.