Opened 6 months ago
Closed 6 months ago
#21904 closed enhancement (fixed)
webkitgtk-2.48.5
| Reported by: | Bruce Dubbs | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | high | Milestone: | 12.4 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description
New point version.
Change History (6)
comment:1 by , 6 months ago
| Priority: | normal → elevated |
|---|---|
| Summary: | webkitgtk-2.48.4 → webkitgtk-2.48.5 |
comment:2 by , 6 months ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:3 by , 6 months ago
Upstream Security Advisory
WebKitGTK and WPE WebKit Security Advisory WSA-2025-0005
Date Reported: August 01, 2025
Advisory ID: WSA-2025-0005
CVE identifiers: CVE-2025-24189, CVE-2025-31273, CVE-2025-31278, CVE-2025-43211,
CVE-2025-43212, CVE-2025-43216, CVE-2025-43227, CVE-2025-43228, CVE-2025-43240,
CVE-2025-43265, CVE-2025-6558
Several vulnerabilities were discovered in WebKitGTK and WPE WebKit.
CVE-2025-24189
Versions affected: WebKitGTK and WPE WebKit before 2.48.0.
Credit to an anonymous researcher.
Impact: Processing maliciously crafted web content may lead to memory
corruption. Description: The issue was addressed with improved checks.
WebKit Bugzilla: 284332
CVE-2025-31273
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei.
Impact: Processing maliciously crafted web content may lead to memory
corruption. Description: The issue was addressed with improved memory handling.
WebKit Bugzilla: 293579
CVE-2025-31278
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei.
Impact: Processing maliciously crafted web content may lead to memory
corruption. Description: The issue was addressed with improved memory handling.
WebKit Bugzilla: 291742
CVE-2025-43211
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Yuhao Hu, Yan Kang, Chenggang Wu, and Xiaojie Wei.
Impact: Processing web content may lead to a denial-of-service. Description: The
issue was addressed with improved memory handling.
WebKit Bugzilla: 293730
CVE-2025-43212
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Nan Wang (@eternalsakura13) and Ziling Chen.
Impact: Processing maliciously crafted web content may lead to an unexpected
Safari crash. Description: The issue was addressed with improved memory handling.
WebKit Bugzilla: 293197
CVE-2025-43216
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Ignacio Sanmillan (@ulexec).
Impact: Processing maliciously crafted web content may lead to an unexpected
Safari crash. Description: A use-after-free issue was addressed with improved memory
management.
WebKit Bugzilla: 295382
CVE-2025-43227
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Gilad Moav.
Impact: Processing maliciously crafted web content may disclose sensitive user
information. Description: This issue was addressed through improved state management.
WebKit Bugzilla: 292888
CVE-2025-43228
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Jaydev Ahire.
Impact: Visiting a malicious website may lead to address bar spoofing.
Description: The issue was addressed with improved UI.
WebKit Bugzilla: 294374
CVE-2025-43240
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Syarif Muhammad Sajjad.
Impact: A download’s origin may be incorrectly associated. Description: A logic
issue was addressed with improved checks.
WebKit Bugzilla: 293994
CVE-2025-43265
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to HexRabbit (@h3xr4bb1t) from DEVCORE Research Team.
Impact: Processing maliciously crafted web content may disclose internal states
of the app. Description: An out-of-bounds read was addressed with improved input
validation.
WebKit Bugzilla: 294182
CVE-2025-6558
Versions affected: WebKitGTK and WPE WebKit before 2.48.5.
Credit to Clément Lecigne and Vlad Stolyarov of Google’s Threat Analysis Group.
Impact: Processing maliciously crafted web content may lead to an unexpected
Safari crash. Description: This is a vulnerability in open source code and Apple
Software is among the affected projects. The CVE-ID was assigned by a third party. Learn
more about the issue and CVE-ID at.
WebKit Bugzilla: 296459
Release notes:
2.48.4
What’s new in the WebKitGTK 2.48.4 release?
Improve emoji font selection with USE_SKIA=ON.
Improve playback of multimedia streams from blob URLs.
Fix the build with USE_SKIA_OPENTYPE_SVG=ON and USE_SYSPROF_CAPTURE=ON.
Fix the build on LoongArch with USE_SKIA=ON.
Fix crash when using a WebKitWebView widget in an offscreen window.
Fix several crashes and rendering issues.
2.48.5
What’s new in the WebKitGTK 2.48.5 release?
Fix several crashes.
comment:4 by , 6 months ago
Vulnerability Ratings
- CVE-2025-31273: 8.8 High (Memory Corruption which can lead to RCE)
- CVE-2025-31278: 8.8 High (Memory Corruption which can lead to RCE)
- CVE-2025-43211: 6.2 Medium (Crash)
- CVE-2025-43212: 6.5 Medium (Crash)
- CVE-2025-43216: 6.5 Medium (Crash)
- CVE-2025-43227: 7.5 High (sensitive user information disclosure)
- CVE-2025-43228: 4.3 Medium (UI Spoofing)
- CVE-2025-43240: 6.2 Medium (Download origin not being associated correctly)
- CVE-2025-43265: 4.0 Medium (Internal state disclosure)
- CVE-2025-6558: 8.8 High (Sandbox escape)
One of the CVEs from the advisory isn't applicable to this advisory since it was fixed in 2.48.0.
comment:6 by , 6 months ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
Fixed at 50cc5a6b62ccf45c1b5b3b9e62c409bfc7885114
SA-12.3-086 issued
Note:
See TracTickets
for help on using tickets.
Now at 2.48.5.
11 CVE's have been fixed: https://webkitgtk.org/security/WSA-2025-0005.html