Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 42: Critical Memory Corruption Vulnerability in webkitgtk 2.48.5

fedora
Calendar Grey August 8, 2025
Dist Fedora Esm H88
The upgrade to webkitgtk 2.48.5 in Fedora 42 tackles major security vulnerabilities and enhances audio-visual playback capabilities.
Update to 2.48.5

Summary

WebKitGTK is the port of the WebKit web rendering engine to the

GTK platform.

Update Information:

Update to 2.48.5. Changes since 2.48.3: Improve emoji font selection. Improve playback of multimedia streams from blob URLs. Fix crash when using a WebKitWebView widget in an offscreen window. Fix several crashes and rendering issues. CVE-2025-31273, CVE-2025-31278, CVE-2025-43211, CVE-2025-43212, CVE-2025-43216, CVE-2025-43227, CVE-2025-43240, CVE-2025-43265, CVE-2025-6558

Topics%20covered

Topics Covered

security advisory fedora memory corruption important malicious content webkitgtk

Change Log

* Tue Aug 5 2025 Michael Catanzaro - 2.48.5-1 - Update to 2.48.5

References


[ 1 ] Bug #2386383 - CVE-2025-43265 webkitgtk: Processing maliciously crafted web content may disclose internal states of the app [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2386383 [ 2 ] Bug #2386384 - CVE-2025-43227 webkitgtk: Processing maliciously crafted web content may disclose sensitive user information [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2386384 [ 3 ] Bug #2386387 - CVE-2025-43216 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2386387 [ 4 ] Bug #2386390 - CVE-2025-43212 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2386390 [ 5 ] Bug #2386397 - CVE-2025-43211 webkitgtk: Processing web content may lead to a denial-of-service [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2386397 [ 6 ] Bu...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-61ca72f430' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: webkitgtk
Product: Fedora 42
Version: 2.48.5
Release: 1.fc42
URL: https://www.webkitgtk.org/
Summary: GTK web content engine library

Topics%20covered

Topics Covered

security advisory fedora memory corruption important malicious content webkitgtk

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here