{"id":"RHSA-2025:23583","summary":"Red Hat Security Advisory: webkitgtk4 security update","modified":"2026-04-03T10:04:25Z","published":"2025-12-19T10:09:56Z","upstream":["CVE-2025-13502","CVE-2025-13947","CVE-2025-43392","CVE-2025-43421","CVE-2025-43425","CVE-2025-43427","CVE-2025-43429","CVE-2025-43430","CVE-2025-43431","CVE-2025-43432","CVE-2025-43433","CVE-2025-43434","CVE-2025-43438","CVE-2025-43440","CVE-2025-43441","CVE-2025-43443","CVE-2025-43458","CVE-2025-66287"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:23583"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416300"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416325"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416327"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416329"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416330"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416331"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416332"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416334"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416335"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416336"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416337"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2416355"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418576"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418855"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2418857"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23583.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-13502"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-13502"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-13502"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-13947"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-13947"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-13947"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43392"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43392"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43392"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0008.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43421"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43421"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43421"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43425"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43425"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43425"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43427"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43427"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43427"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43429"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43429"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43429"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43430"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43430"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43430"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43431"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43431"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43431"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43432"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43432"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43432"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43433"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448783"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43433"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43433"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2026-0001.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43434"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43434"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43434"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43438"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448784"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43438"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43438"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43440"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43440"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43440"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43441"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2448785"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43441"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43441"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43443"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43443"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43443"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-43458"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-43458"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-43458"},{"type":"ARTICLE","url":"https://webkitgtk.org/security/WSA-2025-0009.html"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-66287"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-66287"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-66287"}],"affected":[{"package":{"name":"webkitgtk4","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}},{"package":{"name":"webkitgtk4-debuginfo","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}},{"package":{"name":"webkitgtk4-devel","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}},{"package":{"name":"webkitgtk4-doc","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}},{"package":{"name":"webkitgtk4-jsc","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4-jsc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}},{"package":{"name":"webkitgtk4-jsc-devel","ecosystem":"Red Hat:rhel_els:7","purl":"pkg:rpm/redhat/webkitgtk4-jsc-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.50.3-2.el7_9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:23583.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}