SUSE-SU-2026:0021-1: important: Security update for webkit2gtk3
SLE-SECURITY-UPDATES
null at suse.de
Mon Jan 5 16:30:27 UTC 2026
# Security update for webkit2gtk3
Announcement ID: SUSE-SU-2026:0021-1
Release Date: 2026-01-05T11:16:02Z
Rating: important
References:
* bsc#1254164
* bsc#1254165
* bsc#1254166
* bsc#1254167
* bsc#1254168
* bsc#1254169
* bsc#1254170
* bsc#1254171
* bsc#1254172
* bsc#1254174
* bsc#1254175
* bsc#1254176
* bsc#1254177
* bsc#1254179
* bsc#1254208
* bsc#1254473
* bsc#1254498
* bsc#1254509
* bsc#1255183
* bsc#1255191
* bsc#1255194
* bsc#1255195
* bsc#1255198
* bsc#1255200
* bsc#1255497
Cross-References:
* CVE-2023-43000
* CVE-2025-13502
* CVE-2025-13947
* CVE-2025-14174
* CVE-2025-43392
* CVE-2025-43419
* CVE-2025-43421
* CVE-2025-43425
* CVE-2025-43427
* CVE-2025-43429
* CVE-2025-43430
* CVE-2025-43431
* CVE-2025-43432
* CVE-2025-43434
* CVE-2025-43440
* CVE-2025-43443
* CVE-2025-43458
* CVE-2025-43480
* CVE-2025-43501
* CVE-2025-43529
* CVE-2025-43531
* CVE-2025-43535
* CVE-2025-43536
* CVE-2025-43541
* CVE-2025-66287
CVSS scores:
* CVE-2023-43000 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2023-43000 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2023-43000 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-13502 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-13502 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13502 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13947 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
* CVE-2025-13947 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
* CVE-2025-14174 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-14174 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-14174 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43392 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2025-43392 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43392 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2025-43419 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43419 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43419 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43421 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43421 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43421 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43425 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43425 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43425 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43427 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43427 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43427 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43429 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43429 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43429 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43430 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43430 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43430 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43431 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
* CVE-2025-43431 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43432 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43432 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43432 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43434 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43434 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43434 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43440 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43440 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43440 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43443 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43443 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43443 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43458 ( SUSE ): 2.1
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43458 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43458 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43480 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2025-43480 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43480 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
* CVE-2025-43501 ( SUSE ): 6.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43501 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43501 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43529 ( SUSE ): 8.6
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43529 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43529 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43531 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43531 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43531 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43535 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43535 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43535 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43536 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43536 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43536 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43541 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43541 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43541 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-66287 ( SUSE ): 7.5
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-66287 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-66287 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* Basesystem Module 15-SP6
* Basesystem Module 15-SP7
* Desktop Applications Module 15-SP6
* Desktop Applications Module 15-SP7
* Development Tools Module 15-SP6
* Development Tools Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves 25 vulnerabilities can now be installed.
## Description:
This update for webkit2gtk3 fixes the following issues:
Update to version 2.50.4.
Security issues fixed:
* CVE-2025-13502: processing of maliciously crafted payloads by the GLib
remote inspector server may lead to a UIProcess crash due to an out-of-
bounds read and an integer underflow (bsc#1254208).
* CVE-2025-13947: use of the file drag-and-drop mechanism may lead to remote
information disclosure due to a lack of verification of the origins of drag
operations (bsc#1254473).
* CVE-2025-14174: processing maliciously crafted web content may lead to
memory corruption due to improper validation (bsc#1255497).
* CVE-2025-43392: websites may exfiltrate image data cross-origin due to
issues with cache handling (bsc#1254165).
* CVE-2025-43421: processing maliciously crafted web content may lead to an
unexpected process crash due to enabled array allocation sinking
(bsc#1254167).
* CVE-2025-43425: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1254168).
* CVE-2025-43427: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254169).
* CVE-2025-43429: processing maliciously crafted web content may lead to an
unexpected process crash due to a buffer overflow issue (bsc#1254174).
* CVE-2025-43430: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254172).
* CVE-2025-43431: processing maliciously crafted web content may lead to
memory corruption due to improper memory handling (bsc#1254170).
* CVE-2025-43432: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1254171).
* CVE-2025-43434: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1254179).
* CVE-2025-43440: processing maliciously crafted web content may lead to an
unexpected process crash due to missing checks (bsc#1254177).
* CVE-2025-43443: processing maliciously crafted web content may lead to an
unexpected process crash due to missing checks (bsc#1254176).
* CVE-2025-43458: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254498).
* CVE-2025-43501: processing maliciously crafted web content may lead to an
unexpected process crash due to a buffer overflow issue (bsc#1255194).
* CVE-2025-43529: processing maliciously crafted web content may lead to
arbitrary code execution due to a use-after-free issue (bsc#1255198).
* CVE-2025-43531: processing maliciously crafted web content may lead to an
unexpected process crash due to a race condition (bsc#1255183).
* CVE-2025-43535: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1255195).
* CVE-2025-43536: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1255200).
* CVE-2025-43541: processing maliciously crafted web content may lead to an
unexpected process crash due to type confusion (bsc#1255191).
* CVE-2025-66287: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1254509).
Other issues fixed and changes:
* Version 2.50.4:
* Correctly handle the program name passed to the sleep disabler.
* Ensure GStreamer is initialized before using the Quirks.
* Fix several crashes and rendering issues.
* Version 2.50.3:
* Fix seeking and looping of media elements that set the "loop" property.
* Fix several crashes and rendering issues.
* Version 2.50.2:
* Prevent unsafe URI schemes from participating in media playback.
* Make jsc_value_array_buffer_get_data() function introspectable.
* Fix logging in to Google accounts that have a WebAuthn second factor
configured.
* Fix loading webkit://gpu when there are no threads configured for GPU
rendering.
* Fix rendering gradiants that use the CSS hue interpolation method.
* Fix pasting image data from the clipboard.
* Fix font-family selection when the font name contains spaces.
* Fix the build with standard C libraries that lack execinfo.h, like Musl or
uClibc.
* Fix capturing canvas snapshots in the Web Inspector.
* Fix several crashes and rendering issues.
* Fix a11y regression where AT-SPI roles were mapped incorrectly.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* Development Tools Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-21=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-21=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-21=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-21=1 openSUSE-SLE-15.6-2026-21=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2026-21=1
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-21=1
* Desktop Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2026-21=1
* Desktop Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-21=1
* Development Tools Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2026-21=1
## Package List:
* Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit-6_0-2.50.4-150600.12.54.1
* webkit2gtk4-devel-2.50.4-150600.12.54.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* WebKitGTK-4.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-6.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-4.1-lang-2.50.4-150600.12.54.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-debugsource-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-2.50.4-150600.12.54.1
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-2.50.4-150600.12.54.1
* webkit2gtk3-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk4-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_0-2.50.4-150600.12.54.1
* webkit2gtk3-debugsource-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-devel-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_0-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-2.50.4-150600.12.54.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_1-2.50.4-150600.12.54.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* WebKitGTK-4.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-6.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-4.1-lang-2.50.4-150600.12.54.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-debugsource-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-2.50.4-150600.12.54.1
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-2.50.4-150600.12.54.1
* webkit2gtk3-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk4-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_0-2.50.4-150600.12.54.1
* webkit2gtk3-debugsource-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-devel-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_0-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-2.50.4-150600.12.54.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_1-2.50.4-150600.12.54.1
* openSUSE Leap 15.6 (noarch)
* WebKitGTK-4.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-6.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-4.1-lang-2.50.4-150600.12.54.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-debugsource-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-2.50.4-150600.12.54.1
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-2.50.4-150600.12.54.1
* webkit2gtk3-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-minibrowser-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-2.50.4-150600.12.54.1
* webkit-jsc-6.0-2.50.4-150600.12.54.1
* webkit2gtk3-minibrowser-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_0-2.50.4-150600.12.54.1
* webkit2gtk4-minibrowser-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-150600.12.54.1
* webkit-jsc-4.1-debuginfo-2.50.4-150600.12.54.1
* webkit-jsc-4.1-2.50.4-150600.12.54.1
* webkit2gtk4-devel-2.50.4-150600.12.54.1
* webkit-jsc-4-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_0-2.50.4-150600.12.54.1
* webkit2gtk3-debugsource-2.50.4-150600.12.54.1
* webkit-jsc-4-2.50.4-150600.12.54.1
* webkit-jsc-6.0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-minibrowser-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-devel-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-2.50.4-150600.12.54.1
* webkit2gtk4-minibrowser-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit-6_0-2.50.4-150600.12.54.1
* webkit2gtk3-minibrowser-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_0-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-2.50.4-150600.12.54.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_1-2.50.4-150600.12.54.1
* openSUSE Leap 15.6 (x86_64)
* libjavascriptcoregtk-4_0-18-32bit-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-32bit-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-32bit-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-32bit-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-32bit-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-32bit-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-32bit-debuginfo-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-32bit-debuginfo-2.50.4-150600.12.54.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libwebkit2gtk-4_1-0-64bit-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-64bit-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-64bit-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-64bit-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-64bit-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-64bit-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-64bit-debuginfo-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-64bit-debuginfo-2.50.4-150600.12.54.1
* Basesystem Module 15-SP6 (noarch)
* WebKitGTK-4.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-6.0-lang-2.50.4-150600.12.54.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libwebkit2gtk-4_0-37-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_0-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_0-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-debugsource-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-devel-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-150600.12.54.1
* Basesystem Module 15-SP7 (noarch)
* WebKitGTK-4.0-lang-2.50.4-150600.12.54.1
* WebKitGTK-6.0-lang-2.50.4-150600.12.54.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* libwebkit2gtk-4_0-37-2.50.4-150600.12.54.1
* libwebkit2gtk-4_0-37-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_0-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2WebExtension-4_0-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-2.50.4-150600.12.54.1
* webkit2gtk-4_0-injected-bundles-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-debugsource-2.50.4-150600.12.54.1
* webkit2gtk3-soup2-devel-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_0-18-2.50.4-150600.12.54.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-150600.12.54.1
* Desktop Applications Module 15-SP6 (noarch)
* WebKitGTK-4.1-lang-2.50.4-150600.12.54.1
* Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-debugsource-2.50.4-150600.12.54.1
* webkit2gtk3-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_1-2.50.4-150600.12.54.1
* Desktop Applications Module 15-SP7 (noarch)
* WebKitGTK-4.1-lang-2.50.4-150600.12.54.1
* Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* webkit2gtk3-debugsource-2.50.4-150600.12.54.1
* webkit2gtk3-devel-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-2.50.4-150600.12.54.1
* libwebkit2gtk-4_1-0-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-150600.12.54.1
* libjavascriptcoregtk-4_1-0-2.50.4-150600.12.54.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-150600.12.54.1
* typelib-1_0-WebKit2-4_1-2.50.4-150600.12.54.1
* Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* webkit2gtk4-debugsource-2.50.4-150600.12.54.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-150600.12.54.1
* typelib-1_0-WebKit-6_0-2.50.4-150600.12.54.1
* webkit2gtk4-devel-2.50.4-150600.12.54.1
## References:
* https://www.suse.com/security/cve/CVE-2023-43000.html
* https://www.suse.com/security/cve/CVE-2025-13502.html
* https://www.suse.com/security/cve/CVE-2025-13947.html
* https://www.suse.com/security/cve/CVE-2025-14174.html
* https://www.suse.com/security/cve/CVE-2025-43392.html
* https://www.suse.com/security/cve/CVE-2025-43419.html
* https://www.suse.com/security/cve/CVE-2025-43421.html
* https://www.suse.com/security/cve/CVE-2025-43425.html
* https://www.suse.com/security/cve/CVE-2025-43427.html
* https://www.suse.com/security/cve/CVE-2025-43429.html
* https://www.suse.com/security/cve/CVE-2025-43430.html
* https://www.suse.com/security/cve/CVE-2025-43431.html
* https://www.suse.com/security/cve/CVE-2025-43432.html
* https://www.suse.com/security/cve/CVE-2025-43434.html
* https://www.suse.com/security/cve/CVE-2025-43440.html
* https://www.suse.com/security/cve/CVE-2025-43443.html
* https://www.suse.com/security/cve/CVE-2025-43458.html
* https://www.suse.com/security/cve/CVE-2025-43480.html
* https://www.suse.com/security/cve/CVE-2025-43501.html
* https://www.suse.com/security/cve/CVE-2025-43529.html
* https://www.suse.com/security/cve/CVE-2025-43531.html
* https://www.suse.com/security/cve/CVE-2025-43535.html
* https://www.suse.com/security/cve/CVE-2025-43536.html
* https://www.suse.com/security/cve/CVE-2025-43541.html
* https://www.suse.com/security/cve/CVE-2025-66287.html
* https://bugzilla.suse.com/show_bug.cgi?id=1254164
* https://bugzilla.suse.com/show_bug.cgi?id=1254165
* https://bugzilla.suse.com/show_bug.cgi?id=1254166
* https://bugzilla.suse.com/show_bug.cgi?id=1254167
* https://bugzilla.suse.com/show_bug.cgi?id=1254168
* https://bugzilla.suse.com/show_bug.cgi?id=1254169
* https://bugzilla.suse.com/show_bug.cgi?id=1254170
* https://bugzilla.suse.com/show_bug.cgi?id=1254171
* https://bugzilla.suse.com/show_bug.cgi?id=1254172
* https://bugzilla.suse.com/show_bug.cgi?id=1254174
* https://bugzilla.suse.com/show_bug.cgi?id=1254175
* https://bugzilla.suse.com/show_bug.cgi?id=1254176
* https://bugzilla.suse.com/show_bug.cgi?id=1254177
* https://bugzilla.suse.com/show_bug.cgi?id=1254179
* https://bugzilla.suse.com/show_bug.cgi?id=1254208
* https://bugzilla.suse.com/show_bug.cgi?id=1254473
* https://bugzilla.suse.com/show_bug.cgi?id=1254498
* https://bugzilla.suse.com/show_bug.cgi?id=1254509
* https://bugzilla.suse.com/show_bug.cgi?id=1255183
* https://bugzilla.suse.com/show_bug.cgi?id=1255191
* https://bugzilla.suse.com/show_bug.cgi?id=1255194
* https://bugzilla.suse.com/show_bug.cgi?id=1255195
* https://bugzilla.suse.com/show_bug.cgi?id=1255198
* https://bugzilla.suse.com/show_bug.cgi?id=1255200
* https://bugzilla.suse.com/show_bug.cgi?id=1255497
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20260105/2d5f462d/attachment-0001.htm>
More information about the sle-security-updates
mailing list