{"id":"RHSA-2024:9646","summary":"Red Hat Security Advisory: webkit2gtk3 security update","modified":"2026-03-20T10:45:56.556335Z","published":"2024-11-21T21:57:23Z","upstream":["CVE-2022-32885","CVE-2023-40397","CVE-2023-42852","CVE-2023-42875","CVE-2023-42917","CVE-2023-42970","CVE-2023-43000","CVE-2023-43010","CVE-2024-27808","CVE-2024-27820","CVE-2024-27833","CVE-2024-27851","CVE-2024-27856","CVE-2024-40779","CVE-2024-40780","CVE-2024-40782","CVE-2024-40789","CVE-2024-44185","CVE-2024-44244","CVE-2024-4558","CVE-2024-54534","CVE-2025-43480"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:9646"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/security/vulnerabilities/"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2236842"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2238945"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253058"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271456"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2279689"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302067"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302069"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302070"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302071"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2314697"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2314698"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2314700"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2314704"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2323263"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2323278"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9646.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2022-32885"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2022-32885"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-32885"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2023-0003.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-40397"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-40397"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-40397"},{"type":"ARTICLE","url":"https://wpewebkit.org/security/WSA-2023-0008.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-42852"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-42852"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-42852"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2023-0010.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-42875"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366497"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-42875"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-42875"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0004.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-42917"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-42917"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-42917"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2023-0011.html"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-42970"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2366498"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-42970"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-42970"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-43000"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416324"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-43000"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-43000"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0008.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-43010"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448778"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-43010"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-43010"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2026-0001.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-4558"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-4558"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-4558"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-27808"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-27808"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27808"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0005.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-27820"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-27820"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27820"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-27833"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-27833"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27833"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-27851"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-27851"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27851"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-27856"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2344618"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-27856"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27856"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120896"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120898"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120901"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120902"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120903"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120905"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/120906"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0001.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-40779"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-40779"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40779"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40779"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-40780"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-40780"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40780"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40780"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-40782"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-40782"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40782"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40782"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-40789"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-40789"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-40789"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0004.html#CVE-2024-40789"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-44185"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-44185"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-44185"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2024-0006.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-44244"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-44244"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-44244"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-54534"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2333846"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-54534"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-54534"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121837"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121839"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121843"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121844"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121845"},{"type":"ARTICLE","url":"https://support.apple.com/en-us/121846"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43480"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416338"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43480"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43480"}],"affected":[{"package":{"name":"webkit2gtk3","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-debuginfo","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-debugsource","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-devel","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-devel-debuginfo","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-jsc","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-jsc-debuginfo","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-jsc-devel","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}},{"package":{"name":"webkit2gtk3-jsc-devel-debuginfo","ecosystem":"Red Hat:rhel_eus:8.8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.46.3-1.el8_8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:9646.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}