Advisory: CLSA-2025:1762362132
OS: AlmaLinux 9.2 ESU
Public date: 2025-11-05 17:02:14.472345
Project: webkit2gtk3
Version: 2.48.7-1.el9.tuxcare.els1
Errata link: https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1762362132.html
- Update to 2.48.7. The following CVEs were fixed: - CVE-2025-43272: fix processing maliciously crafted web content which may lead to an unexpected process/Safari crash - CVE-2025-43342: fix processing maliciously crafted web content which may lead to an unexpected process crash - CVE-2025-43356: fix where a website may access sensor information without user consent - CVE-2025-43368: fix processing maliciously crafted web content which may lead to an unexpected crash
Update command: dnf update webkit2gtk3*
webkit2gtk3-2.48.7-1.el9.tuxcare.els1.x86_64.rpm webkit2gtk3-devel-2.48.7-1.el9.tuxcare.els1.x86_64.rpm webkit2gtk3-jsc-2.48.7-1.el9.tuxcare.els1.x86_64.rpm webkit2gtk3-jsc-devel-2.48.7-1.el9.tuxcare.els1.x86_64.rpm