Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 41: webkitgtk Moderate Malicious Content Crash Fix 2025-f2bfde9326

fedora
Calendar Grey October 10, 2025
Dist Fedora Esm H88
This update for Fedora addresses critical performance and rendering issues in webkitgtk, enhancing stability and security.
Update to 2.50.0: Improved rendering performance by recording each layer once and replaying every dirty region in different worker threads

Summary

WebKitGTK is the port of the WebKit web rendering engine to the

GTK platform.

Update Information:

Update to 2.50.0: Improved rendering performance by recording each layer once and replaying every dirty region in different worker threads. Enable damage propagation to the UI process by default. CSS property font-variant-emoji is now enabled by default. Font synthesis properties (bold/italic) are now properly handled. Ensure web view is focused on tap gesture. Added new API to get the theme color of a WebKitWebView. Fix CVE-2025-43272, CVE-2025-43342, CVE-2025-43356, CVE-2025-43368

Topics%20covered

Topics Covered

security advisory moderate security issue fedora crash webkitgtk

Change Log

* Mon Sep 22 2025 Michael Catanzaro - 2.50.0-2 - Fix build on s390x * Fri Sep 19 2025 Michael Catanzaro - 2.50.0-1 - Update to 2.50.0

References


[ 1 ] Bug #2397880 - CVE-2025-43368 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2397880 [ 2 ] Bug #2397885 - CVE-2025-43356 webkitgtk: A website may be able to access sensor information without user consent [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2397885 [ 3 ] Bug #2397890 - CVE-2025-43342 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2397890 [ 4 ] Bug #2397895 - CVE-2025-43272 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2397895

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-f2bfde9326' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: webkitgtk
Product: Fedora 41
Version: 2.50.0
Release: 2.fc41
URL: https://www.webkitgtk.org/
Summary: GTK web content engine library

Topics%20covered

Topics Covered

security advisory moderate security issue fedora crash webkitgtk

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here