{ "document": { "aggregate_severity": { "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" }, { "category": "details", "text": "Rebase to webkitgtk 2.52.3 to address WebKitGTK security advisories\n WSA-2026-0001 and WSA-2026-0002 (matches RHSA-2026:9692).\n- Drop all CVE-2025-* backport patches (Patch100..Patch112); the fixes are\n included in 2.52.3 upstream.\n- Drop fix-missing-typename.patch: target source file was removed upstream.\n- Adapt fix-compositemode-init.patch, fix-renderelement-binding.patch, and\n fix-renderflexbox-typename.patch to 2.52.3 line offsets (same semantic\n clang15 / libstdc++ compat fix).\n- Refresh all CentOS Stream 9-derived patches to the versions that ship\n with c9s webkit2gtk3-2.52.3 (glib-2-68, libsoup2, icu-67,\n g-ir-scanner-nonfatal, evolution-sandbox-warning, aarch64-build) and\n reorder them to match c9s so they apply with rpm's --fuzz=0 --strict\n mode. Our previously-carried versions targeted the 2.50.1 source tree\n and broke when applied against 2.52.3.\n- Switch build toolchain from Clang 15 to gcc-toolset-12 (GCC 12).\n AlmaLinux 9.2 ESU ships Clang 15 as its system compiler, but Clang 15\n does not implement C++20 P0634R3 (\"implicit typename\") nor the\n `requires`-clause name-lookup fix needed to compile WebKit 2.52+.\n GCC 12 implements both and is fully supported upstream. %global\n toolchain is now gcc; BuildRequires updated accordingly; gcc-toolset-12\n is enabled in %build via /opt/rh/gcc-toolset-12/enable.\n- Drop tarball signature/hash verification from %prep. Upstream's 2.52.3\n .asc was signed with an expired DSA key (key expired 2026-04-14, signature\n made 2026-04-16), so gpgv 2.3.x refuses it. The tarball lives in Gerrit\n under change control, so the per-build verify step is redundant. Source1\n (.asc) and Source2 (keyring) are removed along with their files.\n- CVEs resolved by this rebase (30 total):\n WSA-2026-0001 (fixed upstream in 2.50.5 / 2.50.6):\n CVE-2025-43433, CVE-2025-43438, CVE-2025-43441, CVE-2025-43457,\n CVE-2025-43511, CVE-2025-46299, CVE-2026-20608, CVE-2026-20635,\n CVE-2026-20636, CVE-2026-20644, CVE-2026-20652, CVE-2026-20676\n WSA-2026-0002 (fixed in 2.52.1):\n CVE-2026-20643, CVE-2026-20664, CVE-2026-20665, CVE-2026-20691,\n CVE-2026-28857, CVE-2026-28859, CVE-2026-28871\n Older Apple waves superseded by this rebase (from WSA-2025-0008/0009/0010,\n previously tracked by WIP Gerrit change 245288):\n CVE-2025-13947, CVE-2025-14174, CVE-2025-43431, CVE-2025-43443,\n CVE-2025-43458, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531,\n CVE-2025-43535, CVE-2025-43536, CVE-2025-43541\n CVEs from these advisories that were already fixed in 2.50.1 (no action\n needed): CVE-2023-43010 (2.44.0), CVE-2025-31223 / CVE-2025-31277 (2.50.0),\n CVE-2025-43213 / CVE-2025-43214 (cherry-picked onto the webkitglib/2.50\n branch before the 2.50.0 tag).", "title": "Details" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/almalinux9.2esu/advisories/2026/clsa-2026_1777544437.json" } ], "tracking": { "current_release_date": "2026-04-30T10:24:12Z", "generator": { "date": "2026-04-30T10:24:12Z", "engine": { "name": "pyCSAF" } }, "id": "CLSA-2026:1777544437", "initial_release_date": "2026-04-30T10:24:12Z", "revision_history": [ { "date": "2026-04-30T10:24:12Z", "number": "1", "summary": "Initial version" } ], "status": "final", "version": "1" }, "title": "webkit2gtk3: Fix of 35 CVEs" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "AlmaLinux 9.2", "product": { "name": "AlmaLinux 9.2", "product_id": "AlmaLinux-9.2", "product_identification_helper": { "cpe": "cpe:2.3:o:almalinux:almalinux:9.2:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "AlmaLinux" } ], "category": "vendor", "name": "AlmaLinux OS Foundation" }, { "branches": [ { "branches": [ { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_id": "webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.52.3-1.el9.tuxcare.els8?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.52.3-1.el9.tuxcare.els8?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_id": "webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.52.3-1.el9.tuxcare.els8?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product": { "name": "webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_id": "webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.52.3-1.el9.tuxcare.els8?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_id": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.50.1-1.el9.tuxcare.els7?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_id": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.50.1-1.el9.tuxcare.els7?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_id": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.50.1-1.el9.tuxcare.els7?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.50.1-1.el9.tuxcare.els7?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_id": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.50.1-1.el9.tuxcare.els6?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_id": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.50.1-1.el9.tuxcare.els6?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.50.1-1.el9.tuxcare.els6?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_id": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.50.1-1.el9.tuxcare.els6?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.50.1-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.50.1-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.50.1-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.50.1-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_id": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.50.1-1.el9.tuxcare.els4?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.50.1-1.el9.tuxcare.els4?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_id": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.50.1-1.el9.tuxcare.els4?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_id": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.50.1-1.el9.tuxcare.els4?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.50.1-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.50.1-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.50.1-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.50.1-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.48.7-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.48.7-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.48.7-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.48.7-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.48.5-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.48.5-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.48.5-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.48.5-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_id": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.44.4-1.el9.tuxcare.els10?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_id": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.44.4-1.el9.tuxcare.els10?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_id": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.44.4-1.el9.tuxcare.els10?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.44.4-1.el9.tuxcare.els10?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_id": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.44.4-1.el9.tuxcare.els9?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.44.4-1.el9.tuxcare.els9?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_id": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.44.4-1.el9.tuxcare.els9?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_id": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.44.4-1.el9.tuxcare.els9?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.44.4-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.44.4-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.44.4-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_id": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.44.4-1.el9.tuxcare.els5?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.44.4-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.44.4-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.44.4-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.44.4-1.el9.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.38.5-1.el9.3.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.38.5-1.el9.3.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.38.5-1.el9.3.tuxcare.els1?arch=x86_64" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product": { "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_id": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.38.5-1.el9.3.tuxcare.els1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product": { "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_id": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3@2.38.5-1.el9.3.tuxcare.els1?arch=i686" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product": { "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_id": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc@2.38.5-1.el9.3.tuxcare.els1?arch=i686" } } }, { "category": "product_version", "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product": { "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_id": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-jsc-devel@2.38.5-1.el9.3.tuxcare.els1?arch=i686" } } }, { "category": "product_version", "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product": { "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_id": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/webkit2gtk3-devel@2.38.5-1.el9.3.tuxcare.els1?arch=i686" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "TuxCare" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64" }, "product_reference": "webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64" }, "product_reference": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64" }, "product_reference": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64" }, "product_reference": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64" }, "product_reference": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64" }, "product_reference": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686" }, "product_reference": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686" }, "product_reference": "webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686" }, "product_reference": "webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64" }, "product_reference": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686" }, "product_reference": "webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "relates_to_product_reference": "AlmaLinux-9.2" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-20665", "cwe": { "id": "CWE-693", "name": "Protection Mechanism Failure" }, "notes": [ { "category": "description", "text": "This issue was addressed through improved state management. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20665" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2026-20676", "notes": [ { "category": "description", "text": "This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A website may be able to track users through Safari web extensions.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20676" }, { "category": "external", "summary": "https://support.apple.com/en-us/126346", "url": "https://support.apple.com/en-us/126346" }, { "category": "external", "summary": "https://support.apple.com/en-us/126348", "url": "https://support.apple.com/en-us/126348" }, { "category": "external", "summary": "https://support.apple.com/en-us/126353", "url": "https://support.apple.com/en-us/126353" }, { "category": "external", "summary": "https://support.apple.com/en-us/126354", "url": "https://support.apple.com/en-us/126354" } ], "release_date": "2026-02-11T23:16:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-46299", "cwe": { "id": "CWE-909", "name": "Missing Initialization of Resource" }, "notes": [ { "category": "description", "text": "A memory initialization issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may disclose internal states of the app.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-46299" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-14174", "cwe": { "id": "CWE-823", "name": "Use of Out-of-range Pointer Offset" }, "notes": [ { "category": "description", "text": "Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-14174" } ], "release_date": "2025-12-12T19:20:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43541", "cwe": { "id": "CWE-843", "name": "Access of Resource Using Incompatible Type ('Type Confusion')" }, "notes": [ { "category": "description", "text": "A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected Safari crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43541" } ], "release_date": "2025-12-17T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43441", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43441" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43511", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.2, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43511" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43458", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "description", "text": "This issue was addressed through improved state management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43458" } ], "release_date": "2025-12-04T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20643", "cwe": { "id": "CWE-346", "name": "Origin Validation Error" }, "notes": [ { "category": "description", "text": "A cross-origin issue in the Navigation API was addressed with improved input validation. This issue is fixed in Background Security Improvements for iOS, iPadOS, and macOS, Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may bypass Same Origin Policy.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20643" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2026-20664", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20664" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43529", "cwe": { "id": "CWE-825", "name": "Expired Pointer Dereference" }, "notes": [ { "category": "description", "text": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-14174 was also issued in response to this report.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43529" } ], "release_date": "2025-12-16T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43433", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to memory corruption.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43433" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43438", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected Safari crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43438" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20635", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20635" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43431", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to memory corruption.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43431" } ], "release_date": "2025-11-20T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43536", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43536" } ], "release_date": "2025-12-17T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20652", "cwe": { "id": "CWE-400", "name": "Uncontrolled Resource Consumption" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A remote attacker may be able to cause a denial-of-service.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20652" }, { "category": "external", "summary": "https://support.apple.com/en-us/126346", "url": "https://support.apple.com/en-us/126346" }, { "category": "external", "summary": "https://support.apple.com/en-us/126347", "url": "https://support.apple.com/en-us/126347" }, { "category": "external", "summary": "https://support.apple.com/en-us/126348", "url": "https://support.apple.com/en-us/126348" }, { "category": "external", "summary": "https://support.apple.com/en-us/126353", "url": "https://support.apple.com/en-us/126353" }, { "category": "external", "summary": "https://support.apple.com/en-us/126354", "url": "https://support.apple.com/en-us/126354" } ], "release_date": "2026-02-11T23:16:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-28857", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-28857" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43501", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43501" } ], "release_date": "2025-12-17T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-13947", "notes": [ { "category": "description", "text": "A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-13947" } ], "release_date": "2025-12-03T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20608", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20608" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20636", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20636" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43457", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.1, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected Safari crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43457" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20644", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20644" } ], "release_date": "2026-03-18T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-43531", "cwe": { "id": "CWE-362", "name": "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')" }, "notes": [ { "category": "description", "text": "A race condition was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, tvOS 26.2, visionOS 26.2, watchOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43531" } ], "release_date": "2025-12-17T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-28859", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. A malicious website may be able to process restricted web content outside the sandbox.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-28859" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-20691", "cwe": { "id": "CWE-497", "name": "Exposure of Sensitive System Information to an Unauthorized Control Sphere" }, "notes": [ { "category": "description", "text": "An authorization issue was addressed with improved state management. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4, watchOS 26.4. A maliciously crafted webpage may be able to fingerprint the user.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-20691" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-43535", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "description", "text": "The issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43535" } ], "release_date": "2025-12-17T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2026-28871", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')" }, "notes": [ { "category": "description", "text": "A logic issue was addressed with improved checks. This issue is fixed in Safari 26.4, iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4. Visiting a maliciously crafted website may lead to a cross-site scripting attack.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2026-28871" } ], "release_date": "2026-03-28T20:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ] }, { "cve": "CVE-2025-43443", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "description", "text": "This issue was addressed with improved checks. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1, watchOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "known_affected": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-43443" } ], "release_date": "2025-11-20T00:00:00Z", "remediations": [ { "category": "vendor_fix", "date": "2026-04-30T10:20:40.719490Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2026:1777544437" }, { "category": "none_available", "details": "Affected", "product_ids": [ "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.50.1-1.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.i686", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.38.5-1.el9.3.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els10.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.44.4-1.el9.tuxcare.els9.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.5-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.48.7-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els1.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els4.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els5.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els6.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.50.1-1.el9.tuxcare.els7.x86_64" ] } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:webkit2gtk3-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-0:2.52.3-1.el9.tuxcare.els8.x86_64", "AlmaLinux-9.2:webkit2gtk3-jsc-devel-0:2.52.3-1.el9.tuxcare.els8.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] } ] }