{"affected":[{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"webkit2gtk3-soup2","purl":"pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"webkit2gtk4","purl":"pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"webkit2gtk3-soup2","purl":"pkg:rpm/suse/webkit2gtk3-soup2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"webkit2gtk4","purl":"pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.1-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_1":"2.48.5-150600.12.43.1","webkit2gtk-4_1-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-devel":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP6","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.1-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_1":"2.48.5-150600.12.43.1","webkit2gtk-4_1-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-devel":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP7","name":"webkit2gtk3","purl":"pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"typelib-1_0-JavaScriptCore-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKitWebProcessExtension-6_0":"2.48.5-150600.12.43.1","webkit2gtk4-devel":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP6","name":"webkit2gtk4","purl":"pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"typelib-1_0-JavaScriptCore-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKitWebProcessExtension-6_0":"2.48.5-150600.12.43.1","webkit2gtk4-devel":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP7","name":"webkit2gtk4","purl":"pkg:rpm/suse/webkit2gtk4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-4.1-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37-32bit":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_1":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKitWebProcessExtension-6_0":"2.48.5-150600.12.43.1","webkit-jsc-4":"2.48.5-150600.12.43.1","webkit-jsc-4.1":"2.48.5-150600.12.43.1","webkit-jsc-6.0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk-4_1-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-devel":"2.48.5-150600.12.43.1","webkit2gtk3-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk4-devel":"2.48.5-150600.12.43.1","webkit2gtk4-minibrowser":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"webkit2gtk3","purl":"pkg:rpm/opensuse/webkit2gtk3&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-4.1-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37-32bit":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_1":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKitWebProcessExtension-6_0":"2.48.5-150600.12.43.1","webkit-jsc-4":"2.48.5-150600.12.43.1","webkit-jsc-4.1":"2.48.5-150600.12.43.1","webkit-jsc-6.0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk-4_1-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-devel":"2.48.5-150600.12.43.1","webkit2gtk3-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk4-devel":"2.48.5-150600.12.43.1","webkit2gtk4-minibrowser":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"webkit2gtk3-soup2","purl":"pkg:rpm/opensuse/webkit2gtk3-soup2&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"WebKitGTK-4.0-lang":"2.48.5-150600.12.43.1","WebKitGTK-4.1-lang":"2.48.5-150600.12.43.1","WebKitGTK-6.0-lang":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_0-18-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0":"2.48.5-150600.12.43.1","libjavascriptcoregtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libjavascriptcoregtk-6_0-1":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37":"2.48.5-150600.12.43.1","libwebkit2gtk-4_0-37-32bit":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0":"2.48.5-150600.12.43.1","libwebkit2gtk-4_1-0-32bit":"2.48.5-150600.12.43.1","libwebkitgtk-6_0-4":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_0":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-4_1":"2.48.5-150600.12.43.1","typelib-1_0-JavaScriptCore-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit-6_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_0":"2.48.5-150600.12.43.1","typelib-1_0-WebKit2WebExtension-4_1":"2.48.5-150600.12.43.1","typelib-1_0-WebKitWebProcessExtension-6_0":"2.48.5-150600.12.43.1","webkit-jsc-4":"2.48.5-150600.12.43.1","webkit-jsc-4.1":"2.48.5-150600.12.43.1","webkit-jsc-6.0":"2.48.5-150600.12.43.1","webkit2gtk-4_0-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk-4_1-injected-bundles":"2.48.5-150600.12.43.1","webkit2gtk3-devel":"2.48.5-150600.12.43.1","webkit2gtk3-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-devel":"2.48.5-150600.12.43.1","webkit2gtk3-soup2-minibrowser":"2.48.5-150600.12.43.1","webkit2gtk4-devel":"2.48.5-150600.12.43.1","webkit2gtk4-minibrowser":"2.48.5-150600.12.43.1","webkitgtk-6_0-injected-bundles":"2.48.5-150600.12.43.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"webkit2gtk4","purl":"pkg:rpm/opensuse/webkit2gtk4&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.48.5-150600.12.43.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for webkit2gtk3 fixes the following issues:\n\nUpdated to version 2.48.5: \n  - CVE-2025-31273: Fixed a vulnerability where processing maliciously crafted web content could lead to memory corruption. (bsc#1247564)\n  - CVE-2025-31278: Fixed a vulnerability where processing maliciously crafted web content may lead to memory corruption. (bsc#1247563)\n  - CVE-2025-43211: Fixed a vulnerability where processing web content may lead to a denial-of-service. (bsc#1247562)\n  - CVE-2025-43212: Fixed a vulnerability where processing maliciously crafted web content may lead to an unexpected Safari crash. (bsc#1247595)\n  - CVE-2025-43216: Fixed a vulnerability where processing maliciously crafted web content may lead to an unexpected Safari crash. (bsc#1247596)\n  - CVE-2025-43227: Fixed a vulnerability where processing maliciously crafted web content may disclose sensitive user information. (bsc#1247597)\n  - CVE-2025-43228: Fixed a vulnerability where visiting a malicious website may lead to address bar spoofing. (bsc#1247598)\n  - CVE-2025-43240: Fixed a vulnerability where a download's origin may be incorrectly associated. (bsc#1247599)\n  - CVE-2025-43265: Fixed a vulnerability where processing maliciously crafted web content may disclose internal states of the app. (bsc#1247600)\n  - CVE-2025-6558: Fixed a vulnerability where processing maliciously crafted web content may lead to an unexpected Safari crash. (bsc#1247742)\n\nOther fixes:\n- Improve emoji font selection with USE_SKIA=ON.\n- Improve playback of multimedia streams from blob URLs.\n- Fix the build with USE_SKIA_OPENTYPE_SVG=ON and\n  USE_SYSPROF_CAPTURE=ON.\n- Fix crash when using a WebKitWebView widget in an offscreen\n  window.\n- Fix several crashes and rendering issues.\n- Fix a crash introduced by the new threaded rendering\n  implementation using Skia API.\n- Improve rendering performance by recording layers once and\n  replaying every dirty region in different worker threads.\n- Fix a crash when setting WEBKIT_SKIA_GPU_PAINTING_THREADS=0.\n- Fix a reference cycle in webkitmediastreamsrc preventing its\n  disposal.\n- Increase mem_per_process again to avoid running out of memory.\n\n  ","id":"SUSE-SU-2025:02765-1","modified":"2025-08-12T12:59:26Z","published":"2025-08-12T12:59:26Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502765-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247562"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247563"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247564"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247595"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247596"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247597"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247598"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247599"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247600"},{"type":"REPORT","url":"https://bugzilla.suse.com/1247742"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-44192"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-54467"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-24189"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-24201"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-31273"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-31278"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43211"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43212"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43216"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43227"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43228"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43240"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-43265"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-6558"}],"related":["CVE-2024-44192","CVE-2024-54467","CVE-2025-24189","CVE-2025-24201","CVE-2025-31273","CVE-2025-31278","CVE-2025-43211","CVE-2025-43212","CVE-2025-43216","CVE-2025-43227","CVE-2025-43228","CVE-2025-43240","CVE-2025-43265","CVE-2025-6558"],"summary":"Security update for webkit2gtk3","upstream":["CVE-2024-44192","CVE-2024-54467","CVE-2025-24189","CVE-2025-24201","CVE-2025-31273","CVE-2025-31278","CVE-2025-43211","CVE-2025-43212","CVE-2025-43216","CVE-2025-43227","CVE-2025-43228","CVE-2025-43240","CVE-2025-43265","CVE-2025-6558"]}