Описание
Important: webkit2gtk3 security update
WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.
Security Fix(es):
-
webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44192)
-
webkitgtk: A malicious website may exfiltrate data cross-origin (CVE-2024-54467)
-
webkitgtk: Processing web content may lead to a denial-of-service (CVE-2024-54551)
-
webkitgtk: Loading a malicious iframe may lead to a cross-site scripting attack (CVE-2025-24208)
-
webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-24209)
-
webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-24216)
-
webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-30427)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Затронутые продукты
Rocky Linux 8
Ссылки на источники
Исправления
- Red Hat - 2353871
- Red Hat - 2353872
- Red Hat - 2357909
- Red Hat - 2357910
- Red Hat - 2357911
- Red Hat - 2357917
- Red Hat - 2357919
