Release date:
2025-12-17 15:48:06 UTC
Description:
- CVE-2025-13502: fix out of bounds read and integer underflow by adding
bounds checking and validating message delimiters
- CVE-2025-43430: fix bbq jit compiler writing to wrong stack slots
in wasm try/catch blocks
- CVE-2025-43421: fix memory handling issues that cause unexpected
process crashes by disabling array allocation sinking in JS JIT
- CVE-2025-66287: fix process crash from malicious png/apng files with
excessive data
Updated packages:
-
webkit2gtk3-2.50.1-1.el9.tuxcare.els4.x86_64.rpm
sha:fc1b4d6ae54a16512f1eaf4ddcaf54e7df171952439e81d600f826520c904ffa
-
webkit2gtk3-devel-2.50.1-1.el9.tuxcare.els4.x86_64.rpm
sha:a6b0ac3fe22a99419c8a640503c73d6349969607c08e1de45e5c708a81a267a2
-
webkit2gtk3-jsc-2.50.1-1.el9.tuxcare.els4.x86_64.rpm
sha:fdbab60112ccf921d14e5ca2fbbc043fa3ce0ccece276abd7cdaaed815e1661f
-
webkit2gtk3-jsc-devel-2.50.1-1.el9.tuxcare.els4.x86_64.rpm
sha:bace2c5bc3340c01152d58d975c7c08ce624735355dadbc030ad6dafdf9b342e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
