[CLSA-2025:1767001828] webkit2gtk3: Fix of 15 CVEs
Type:
security
Severity:
Important
Release date:
2026-01-05 15:08:11 UTC
Description:
- Update to 2.50.3 - Fix multiple security issues that could lead to crashes, memory corruption, or information disclosure when processing malicious web content: - CVE-2025-66287 - CVE-2025-43458 - CVE-2025-43421 - CVE-2025-13947 - Includes fixes previously released in version 2.50.2: - CVE-2025-13502: fix out-of-bounds read and integer underflow - CVE-2025-43443: fix unexpected process crash from malicious web content - CVE-2025-43440: fix DFG constant folding to skip unreachable blocks - CVE-2025-43434: fix use-after-free in WebAssembly globals and tables - CVE-2025-43432: fix use-after-free in WasmFunctionParser - CVE-2025-43431: fix dangling pointer in WebAssembly struct field types - CVE-2025-43430: fix BBQ JIT writing to incorrect stack slots - CVE-2025-43429: fix insufficient bounds checking in Unicode string handling - CVE-2025-43427: fix wrong jump table state handling that could lead to crashes - CVE-2025-43425: fix DFG node cloning flaw leading to crashes - CVE-2025-43392: fix cross-origin image data leak
Updated packages:
  • webkit2gtk3-2.50.3-1.el9_6.tuxcare.els1.i686.rpm
    sha:f23bc2b3e06af29ebd07722f07150e469a0fd1f74df5eccbc6ebf3f368023a7e
  • webkit2gtk3-2.50.3-1.el9_6.tuxcare.els1.x86_64.rpm
    sha:a7ea2da1ff5d31c104b7bb60f948db01cb2dcdf7c9613cb6795c6b4ca508fcf0
  • webkit2gtk3-devel-2.50.3-1.el9_6.tuxcare.els1.i686.rpm
    sha:fecc12b379eb001c3abffd0988eeb78d8036ae8b16f11bfbf77fc8bf6f9d15e6
  • webkit2gtk3-devel-2.50.3-1.el9_6.tuxcare.els1.x86_64.rpm
    sha:eb31496b0ba7654c4ef5c7371f7caa8b24efa981b50bf17f8200ecc08d83cd86
  • webkit2gtk3-jsc-2.50.3-1.el9_6.tuxcare.els1.i686.rpm
    sha:13067d5be25756d06ecfaa972af421f6dc188559b4468fe49ddaf0799d552360
  • webkit2gtk3-jsc-2.50.3-1.el9_6.tuxcare.els1.x86_64.rpm
    sha:f425be341ebcd1ae31fe0e563b055cae6bfa10bc3ffedb19d8547ed9a1ceab89
  • webkit2gtk3-jsc-devel-2.50.3-1.el9_6.tuxcare.els1.i686.rpm
    sha:91d29f8f69020f0ce43ca2408d56950677750e64380ab9cda97120f5bb5b7196
  • webkit2gtk3-jsc-devel-2.50.3-1.el9_6.tuxcare.els1.x86_64.rpm
    sha:2ea5f0e030a1a7d7370f3f116e651cfec4ee12ecc843c33c2c4660462a11ba3b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.