Alerts This Week
Warning Icon 1 1,109
Alerts This Week
Warning Icon 1 1,109

Mageia 9 Webkit2 Resolves Critical Vulnerabilities with MGASA-2026-0064

mageia
Calendar Grey March 24, 2026
Dist Mageia Esm H88
Updated webkit2 packages in Mageia address critical issues leading to crashes and denial of service, ensuring better security.
MGASA-2026-0064 - Updated webkit2 packages fix security vulnerabilities

Summary

Description: CVE-2025-43457 Processing maliciously crafted web content may lead to an unexpected Safari crash. A use-after-free issue was addressed with improved memory management. CVE-2026-20608 Processing maliciously crafted web content may lead to an unexpected process crash. This issue was addressed through improved state management. CVE-2026-20635 Processing maliciously crafted web content may lead to an unexpected process crash. The issue was addressed with improved memory handling. CVE-2026-20636 Processing maliciously crafted web content may lead to an unexpected process crash. The issue was addressed with improved memory handling. CVE-2026-20644 Processing maliciously crafted web content may lead to an unexpected process crash. The issue was addressed with improved memory handling. CVE-2026-20652 A remote attacker may be able to cause a denial-of-service. The issue was addressed with improved memory handling. CVE-2026-20676 A website may be able to track users through Safar...

References

- https://bugs.mageia.org/show_bug.cgi?id=35228

- https://webkitgtk.org/2026/03/12/webkitgtk2.50.6-released.html

- https://webkitgtk.org/security/WSA-2026-0001.html

- https://www.cve.org/CVERecord?id=CVE-2025-43457

- https://www.cve.org/CVERecord?id=CVE-2026-20608

- https://www.cve.org/CVERecord?id=CVE-2026-20635

- https://www.cve.org/CVERecord?id=CVE-2026-20636

- https://www.cve.org/CVERecord?id=CVE-2026-20644

- https://www.cve.org/CVERecord?id=CVE-2026-20652

- https://www.cve.org/CVERecord?id=CVE-2026-20676

Resolution

SRPMS

- 9/core/webkit2-2.50.6-1.mga9

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 24 Mar 2026
URL: https://advisories.mageia.org/MGASA-2026-0064.html
Type: security
CVE: CVE-2025-43457, CVE-2026-20608, CVE-2026-20635, CVE-2026-20636, CVE-2026-20644, CVE-2026-20652, CVE-2026-20676

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here