Debian 11: WebKitGTK Critical Denial of Service DLA-4276-1 CVE-2025-6558
debian lts
August 20, 2025
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2025-6558
Summary
CVE-2025-6558
Clement Lecigne and Vlad Stolyarov discovered that processing
maliciously crafted web content may lead to an unexpected crash.
CVE-2025-31273
Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei discovered that
processing maliciously crafted web content may lead to memory
corruption.
CVE-2025-31278
Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei discovered that
processing maliciously crafted web content may lead to memory
corruption.
CVE-2025-43211
Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei discovered that
processing web content may lead to a denial-of-service.
CVE-2025-43212
Nan Wang and Ziling Chen discovered that processing maliciously
crafted web content may lead to an unexpected crash.
CVE-2025-43216
Ignacio Sanmillan discovered that processing maliciously crafted
web content may lead to an unexpected crash.
CVE-2025-43227
Gilad Moav discovered that processing maliciously crafted web
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Package: webkit2gtk
Version: 2.48.5-1~deb11u1
CVE ID: CVE-2025-6558 CVE-2025-31273 CVE-2025-31278 CVE-2025-43211
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!