[Apollo] Advisories Statistics light light Login

RLSA-2025:7387

Security Mirrored from RHSA-2025:7387
Issued at: 2025-07-29
Updated at: 2025-07-29

Synopsis

Important: webkit2gtk3 security update



Description

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.

Security Fix(es):

* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2024-44192)

* webkitgtk: A malicious website may exfiltrate data cross-origin (CVE-2024-54467)

* webkitgtk: Processing web content may lead to a denial-of-service (CVE-2024-54551)

* webkitgtk: Loading a malicious iframe may lead to a cross-site scripting attack (CVE-2025-24208)

* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-24209)

* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-24216)

* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-30427)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2353871 2353872 2357909 2357910 2357911 2357917 2357919

CVEs

CVE-2024-44192 CVE-2024-54467 CVE-2024-54551 CVE-2025-24208 CVE-2025-24209 CVE-2025-24216 CVE-2025-30427

Affected packages

Rocky Linux 9 aarch64 - AppStream

webkit2gtk3-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-0:2.48.1-1.el9_5.src.rpm webkit2gtk3-debuginfo-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-debugsource-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-devel-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-devel-debuginfo-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-jsc-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-jsc-debuginfo-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-jsc-devel-0:2.48.1-1.el9_5.aarch64.rpm webkit2gtk3-jsc-devel-debuginfo-0:2.48.1-1.el9_5.aarch64.rpm

Rocky Linux 9 x86_64 - AppStream

webkit2gtk3-0:2.48.1-1.el9_5.i686.rpm webkit2gtk3-0:2.48.1-1.el9_5.src.rpm webkit2gtk3-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-debuginfo-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-debugsource-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-devel-0:2.48.1-1.el9_5.i686.rpm webkit2gtk3-devel-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-devel-debuginfo-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-jsc-0:2.48.1-1.el9_5.i686.rpm webkit2gtk3-jsc-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-jsc-debuginfo-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-jsc-devel-0:2.48.1-1.el9_5.i686.rpm webkit2gtk3-jsc-devel-0:2.48.1-1.el9_5.x86_64.rpm webkit2gtk3-jsc-devel-debuginfo-0:2.48.1-1.el9_5.x86_64.rpm

Rocky Linux 9 ppc64le - AppStream

webkit2gtk3-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-0:2.48.1-1.el9_5.src.rpm webkit2gtk3-debuginfo-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-debugsource-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-devel-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-devel-debuginfo-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-jsc-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-jsc-debuginfo-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-jsc-devel-0:2.48.1-1.el9_5.ppc64le.rpm webkit2gtk3-jsc-devel-debuginfo-0:2.48.1-1.el9_5.ppc64le.rpm

Rocky Linux 9 s390x - AppStream

webkit2gtk3-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-0:2.48.1-1.el9_5.src.rpm webkit2gtk3-debuginfo-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-debugsource-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-devel-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-devel-debuginfo-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-jsc-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-jsc-debuginfo-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-jsc-devel-0:2.48.1-1.el9_5.s390x.rpm webkit2gtk3-jsc-devel-debuginfo-0:2.48.1-1.el9_5.s390x.rpm