WebKitGTK is the port of the WebKit web rendering engine to the
GTK platform.
Update Information:
Correctly handle the program name passed to the sleep disabler. Ensure GStreamer is initialized before using the Quirks. Fix several crashes and rendering issues. Fix CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531, CVE-2025-43535, CVE-2025-43536, CVE-2025-43541
* Tue Dec 16 2025 Tomas Popela
[ 1 ] Bug #2423171 - CVE-2025-43529 webkitgtk: webkitgtk: Use-after-free due to improper memory management [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423171
[ 2 ] Bug #2423291 - CVE-2025-43501 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423291
[ 3 ] Bug #2423295 - CVE-2025-43531 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423295
[ 4 ] Bug #2423301 - CVE-2025-43535 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id=2423301
[ 5 ] Bug #2423305 - CVE-2025-43536 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42]
https://bugzilla.redhat.com/show_bug.cgi?id...
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3e5ba4315a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
Get the latest Linux and open source security news straight to your inbox.