Описание
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues:
Update to version 2.48.2.
Security issues fixed:
- CVE-2025-31205: lack of checks may lead to cross-origin data exfiltration through a malicious website (bsc#1243282).
- CVE-2025-31204: improper memory handling when processing certain web content may lead to memory corruption (bsc#1243286).
- CVE-2025-31206: type confusion issue when processing certain web content may lead to an unexpected crash (bsc#1243288).
- CVE-2025-31215: lack of checks when processing certain web content may lead to an unexpected crash (bsc#1243289).
- CVE-2025-31257: improper memory handling when processing certain web content may lead to an unexpected crash (bsc#1243596).
- CVE-2025-24223: improper memory handling when processing certain web content may lead to memory corruption (bsc#1243424).
Other changes and issues fixed:
- Enable CSS overscroll behavior by default.
- Change threaded rendering implementation to use Skia API instead of WebCore display list that is not thread safe.
- Fix rendering when device scale factor change comes before the web view geometry update.
- Fix network process crash on exit.
- Fix the build with ENABLE_RESOURCE_USAGE=OFF.
- Fix several crashes and rendering issues.
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise Server 15 SP4-LTSS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise Server 15 SP5-LTSS
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_1-0-2.48.2-150400.4.119.1
libjavascriptcoregtk-6_0-1-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
libwebkit2gtk-4_1-0-2.48.2-150400.4.119.1
libwebkitgtk-6_0-4-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_1-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_1-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk-4_1-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-devel-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
webkitgtk-6_0-injected-bundles-2.48.2-150400.4.119.1
SUSE Manager Proxy 4.3
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
SUSE Manager Server 4.3
WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
libwebkit2gtk-4_0-37-2.48.2-150400.4.119.1
typelib-1_0-JavaScriptCore-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2-4_0-2.48.2-150400.4.119.1
typelib-1_0-WebKit2WebExtension-4_0-2.48.2-150400.4.119.1
webkit2gtk-4_0-injected-bundles-2.48.2-150400.4.119.1
webkit2gtk3-soup2-devel-2.48.2-150400.4.119.1
Ссылки
- Link for SUSE-SU-2025:01724-1
- E-Mail link for SUSE-SU-2025:01724-1
- SUSE Security Ratings
- SUSE Bug 1241158
- SUSE Bug 1241160
- SUSE Bug 1243282
- SUSE Bug 1243286
- SUSE Bug 1243288
- SUSE Bug 1243289
- SUSE Bug 1243424
- SUSE Bug 1243596
- SUSE CVE CVE-2023-42875 page
- SUSE CVE CVE-2023-42970 page
- SUSE CVE CVE-2025-24223 page
- SUSE CVE CVE-2025-31204 page
- SUSE CVE CVE-2025-31205 page
- SUSE CVE CVE-2025-31206 page
- SUSE CVE CVE-2025-31215 page
- SUSE CVE CVE-2025-31257 page
Описание
Processing web content may lead to arbitrary code execution. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. The issue was addressed with improved memory handling.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2023-42875
- SUSE Bug 1241158
Описание
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17, Safari 17. Processing web content may lead to arbitrary code execution.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2023-42970
- SUSE Bug 1241160
Описание
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to memory corruption.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-24223
- SUSE Bug 1243424
Описание
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to memory corruption.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-31204
- SUSE Bug 1243286
Описание
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. A malicious website may exfiltrate data cross-origin.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-31205
- SUSE Bug 1243282
Описание
A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-31206
- SUSE Bug 1243288
Описание
The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected process crash.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-31215
- SUSE Bug 1243289
Описание
This issue was addressed with improved memory handling. This issue is fixed in watchOS 11.5, tvOS 18.5, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected Safari crash.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-4.1-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:WebKitGTK-6.0-lang-2.48.2-150400.4.119.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libjavascriptcoregtk-4_0-18-2.48.2-150400.4.119.1
Ссылки
- CVE-2025-31257
- SUSE Bug 1243596