Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Fedora 42: webkitgtk Critical Fix for CVE-2025-14174 Process Crash

fedora
Calendar Grey January 2, 2026
Dist Fedora Esm H88
Fixes for multiple CVEs in webkitgtk on Fedora 42 to enhance security and system integrity.
Correctly handle the program name passed to the sleep disabler

Summary

WebKitGTK is the port of the WebKit web rendering engine to the

GTK platform.

Update Information:

Correctly handle the program name passed to the sleep disabler. Ensure GStreamer is initialized before using the Quirks. Fix several crashes and rendering issues. Fix CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531, CVE-2025-43535, CVE-2025-43536, CVE-2025-43541

Change Log

* Tue Dec 16 2025 Tomas Popela - 2.50.4-1 - Update to 2.50.4

References


[ 1 ] Bug #2423171 - CVE-2025-43529 webkitgtk: webkitgtk: Use-after-free due to improper memory management [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2423171 [ 2 ] Bug #2423291 - CVE-2025-43501 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2423291 [ 3 ] Bug #2423295 - CVE-2025-43531 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2423295 [ 4 ] Bug #2423301 - CVE-2025-43535 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2423301 [ 5 ] Bug #2423305 - CVE-2025-43536 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3e5ba4315a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: webkitgtk
Product: Fedora 42
Version: 2.50.4
Release: 1.fc42
Summary: GTK web content engine library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here