Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 41: FEDORA-2025-c40948de3a moderate: webkitgtk memory crash fixes

fedora
Calendar Grey May 19, 2025
Dist Fedora Esm H88
The latest Fedora 41 release for webkitgtk resolves security vulnerabilities and boosts performance. Update now for improved system reliability.
Enable CSS Overscroll Behavior by default

Summary

WebKitGTK is the port of the WebKit web rendering engine to the

GTK platform.

Update Information:

Enable CSS Overscroll Behavior by default. Change threaded rendering implementation to use Skia API instead of WebCore display list that is not thread safe. Fix rendering when device scale factor change comes before the web view geometry update. Fix network process crash on exit. Fix several crashes and rendering issues. Fix CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206, CVE-2025-31215, CVE-2025-31257

Topics%20covered

Topics Covered

security advisory Fedora memory corruption update information webkitgtk network process crash

Change Log

* Wed May 14 2025 Michael Catanzaro - 2.48.2-1 - Update to 2.48.2

References


[ 1 ] Bug #2366612 - CVE-2025-24223 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2366612 [ 2 ] Bug #2366614 - CVE-2025-31204 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2366614 [ 3 ] Bug #2366616 - CVE-2025-31205 webkitgtk: A malicious website may exfiltrate data cross-origin [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2366616 [ 4 ] Bug #2366618 - CVE-2025-31206 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2366618 [ 5 ] Bug #2366620 - CVE-2025-31215 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2366620 [ 6 ] Bug #...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-c40948de3a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: webkitgtk
Product: Fedora 41
Version: 2.48.2
Release: 1.fc41
URL: https://www.webkitgtk.org/
Summary: GTK web content engine library

Topics%20covered

Topics Covered

security advisory Fedora memory corruption update information webkitgtk network process crash

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here