{"id":"RHSA-2025:17802","summary":"Red Hat Security Advisory: webkit2gtk3 security update","modified":"2026-04-13T10:02:58Z","published":"2025-10-14T10:04:05Z","upstream":["CVE-2025-31223","CVE-2025-31277","CVE-2025-43272","CVE-2025-43342","CVE-2025-43356","CVE-2025-43368","CVE-2025-43419"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:17802"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2397626"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2397627"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2397628"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2397630"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_17802.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-31223"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448779"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-31223"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-31223"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2026-0001.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-31277"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448780"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-31277"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-31277"},{"type":"ARTICLE","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43272"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43272"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43272"},{"type":"ARTICLE","url":"https://github.com/WebKit/WebKit/commit/fa85413077accf8c881ff88684eb5dcc6ddebea2"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0006.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43342"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43342"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43342"},{"type":"ARTICLE","url":"https://github.com/WebKit/WebKit/commit/f3f7e7880c36ac7d0735efc084c618382194382e"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43356"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43356"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43356"},{"type":"ARTICLE","url":"https://github.com/WebKit/WebKit/commit/fbe01734a08b94759e2a1759bcf0ea1f279c95a4"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43368"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43368"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43368"},{"type":"ARTICLE","url":"https://github.com/WebKit/WebKit/commit/674611789255a98f96b4504c7d04034e0ae5908a"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43419"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416326"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43419"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43419"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0008.html"}],"affected":[{"package":{"name":"webkit2gtk3","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-devel-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-jsc","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-jsc-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-jsc-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}},{"package":{"name":"webkit2gtk3-jsc-devel-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.0-1.el8_10"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:17802.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}