WebKitGTK updates for Fedora 41

Fedora Linux 8990 Published 2025-05-19 07:10 by Philipp Esselbach

News

A security update for WebKitGTK is now available for Fedora Linux 41:

Fedora 41 Update: webkitgtk-2.48.2-1.fc41

[SECURITY] Fedora 41 Update: webkitgtk-2.48.2-1.fc41

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-c40948de3a
2025-05-19 01:31:46.485823+00:00
--------------------------------------------------------------------------------

Name : webkitgtk
Product : Fedora 41
Version : 2.48.2
Release : 1.fc41
URL : https://www.webkitgtk.org/
Summary : GTK web content engine library
Description :
WebKitGTK is the port of the WebKit web rendering engine to the
GTK platform.

--------------------------------------------------------------------------------
Update Information:

Enable CSS Overscroll Behavior by default.
Change threaded rendering implementation to use Skia API instead of WebCore
display list that is not thread safe.
Fix rendering when device scale factor change comes before the web view geometry
update.
Fix network process crash on exit.
Fix several crashes and rendering issues.
Fix CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206,
CVE-2025-31215, CVE-2025-31257
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 14 2025 Michael Catanzaro [mcatanzaro@redhat.com] - 2.48.2-1
- Update to 2.48.2
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2366612 - CVE-2025-24223 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366612
[ 2 ] Bug #2366614 - CVE-2025-31204 webkitgtk: Processing maliciously crafted web content may lead to memory corruption [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366614
[ 3 ] Bug #2366616 - CVE-2025-31205 webkitgtk: A malicious website may exfiltrate data cross-origin [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366616
[ 4 ] Bug #2366618 - CVE-2025-31206 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366618
[ 5 ] Bug #2366620 - CVE-2025-31215 webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366620
[ 6 ] Bug #2366622 - CVE-2025-31257 webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2366622
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-c40948de3a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--

Liquorix Linux Kernel 6.14-9 released

Python and Ruby updates for SUSE

WebKitGTK updates for Fedora 41

[SECURITY] Fedora 41 Update: webkitgtk-2.48.2-1.fc41

Windows

Linux

macOS

Community