SUSE-SU-2026:20102-1: important: Security update for webkit2gtk3
SLE-SECURITY-UPDATES
null at suse.de
Fri Jan 23 08:31:38 UTC 2026
# Security update for webkit2gtk3
Announcement ID: SUSE-SU-2026:20102-1
Release Date: 2026-01-20T12:08:51Z
Rating: important
References:
* bsc#1250439
* bsc#1250440
* bsc#1250441
* bsc#1250442
* bsc#1251975
* bsc#1254164
* bsc#1254165
* bsc#1254166
* bsc#1254167
* bsc#1254168
* bsc#1254169
* bsc#1254170
* bsc#1254171
* bsc#1254172
* bsc#1254174
* bsc#1254175
* bsc#1254176
* bsc#1254177
* bsc#1254179
* bsc#1254208
* bsc#1254473
* bsc#1254498
* bsc#1254509
* bsc#1255183
* bsc#1255191
* bsc#1255194
* bsc#1255195
* bsc#1255198
* bsc#1255200
* bsc#1255497
Cross-References:
* CVE-2023-43000
* CVE-2025-13502
* CVE-2025-13947
* CVE-2025-14174
* CVE-2025-43272
* CVE-2025-43342
* CVE-2025-43343
* CVE-2025-43356
* CVE-2025-43368
* CVE-2025-43392
* CVE-2025-43419
* CVE-2025-43421
* CVE-2025-43425
* CVE-2025-43427
* CVE-2025-43429
* CVE-2025-43430
* CVE-2025-43431
* CVE-2025-43432
* CVE-2025-43434
* CVE-2025-43440
* CVE-2025-43443
* CVE-2025-43458
* CVE-2025-43480
* CVE-2025-43501
* CVE-2025-43529
* CVE-2025-43531
* CVE-2025-43535
* CVE-2025-43536
* CVE-2025-43541
* CVE-2025-66287
CVSS scores:
* CVE-2023-43000 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2023-43000 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2023-43000 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-13502 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-13502 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13502 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13947 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
* CVE-2025-13947 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
* CVE-2025-14174 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-14174 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-14174 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43272 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43272 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43342 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2025-43342 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-43343 ( SUSE ): 8.6
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43343 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43343 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-43356 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43356 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43368 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43368 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43392 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2025-43392 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43392 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2025-43419 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43419 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43419 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43421 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43421 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43421 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43425 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43425 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43425 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43427 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43427 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43427 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43429 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43429 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43429 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43430 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43430 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43430 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43431 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
* CVE-2025-43431 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43432 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43432 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43432 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43434 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43434 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43434 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43440 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43440 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43440 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43443 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43443 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43443 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43458 ( SUSE ): 2.1
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-43458 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43458 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43480 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2025-43480 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2025-43480 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
* CVE-2025-43501 ( SUSE ): 6.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43501 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43501 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43529 ( SUSE ): 8.6
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43529 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43529 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43531 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43531 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43531 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43535 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43535 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43535 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43536 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43536 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43536 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-43541 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43541 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-43541 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-66287 ( SUSE ): 7.5
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-66287 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-66287 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* SUSE Linux Enterprise Server 16.0
* SUSE Linux Enterprise Server for SAP Applications 16.0
An update that solves 30 vulnerabilities can now be installed.
## Description:
This update for webkit2gtk3 fixes the following issues:
Update to version 2.50.4.
Security issues fixed:
* CVE-2025-13502: processing of maliciously crafted payloads by the GLib
remote inspector server may lead to a UIProcess crash due to an out-of-
bounds read and an integer underflow (bsc#1254208).
* CVE-2025-13947: use of the file drag-and-drop mechanism may lead to remote
information disclosure due to a lack of verification of the origins of drag
operations (bsc#1254473).
* CVE-2025-14174: processing maliciously crafted web content may lead to
memory corruption due to improper validation (bsc#1255497).
* CVE-2025-43272: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1250439).
* CVE-2025-43342: processing maliciously crafted web content may lead to an
unexpected process crash due to a correctness issue and missing checks
(bsc#1250440).
* CVE-2025-43343: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1251975).
* CVE-2025-43356: a website may be able to access sensor information without
user consent due to improper cache handling (bsc#1250441).
* CVE-2025-43368: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1250442).
* CVE-2025-43392: websites may exfiltrate image data cross-origin due to
issues with cache handling (bsc#1254165).
* CVE-2025-43419: processing maliciously crafted web content may lead to
memory corruption due to improper memory handling (bsc#1254166).
* CVE-2025-43421: processing maliciously crafted web content may lead to an
unexpected process crash due to enabled array allocation sinking
(bsc#1254167).
* CVE-2025-43425: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1254168).
* CVE-2025-43427: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254169).
* CVE-2025-43429: processing maliciously crafted web content may lead to an
unexpected process crash due to a buffer overflow issue (bsc#1254174).
* CVE-2025-43430: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254172).
* CVE-2025-43431: processing maliciously crafted web content may lead to
memory corruption due to improper memory handling (bsc#1254170).
* CVE-2025-43432: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1254171).
* CVE-2025-43434: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1254179).
* CVE-2025-43440: processing maliciously crafted web content may lead to an
unexpected process crash due to missing checks (bsc#1254177).
* CVE-2025-43443: processing maliciously crafted web content may lead to an
unexpected process crash due to missing checks (bsc#1254176).
* CVE-2025-43458: processing maliciously crafted web content may lead to an
unexpected process crash due to issues with state management (bsc#1254498).
* CVE-2025-43501: processing maliciously crafted web content may lead to an
unexpected process crash due to a buffer overflow issue (bsc#1255194).
* CVE-2025-43529: processing maliciously crafted web content may lead to
arbitrary code execution due to a use-after-free issue (bsc#1255198).
* CVE-2025-43531: processing maliciously crafted web content may lead to an
unexpected process crash due to a race condition (bsc#1255183).
* CVE-2025-43535: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1255195).
* CVE-2025-43536: processing maliciously crafted web content may lead to an
unexpected process crash due to a use-after-free issue (bsc#1255200).
* CVE-2025-43541: processing maliciously crafted web content may lead to an
unexpected process crash due to type confusion (bsc#1255191).
* CVE-2025-66287: processing maliciously crafted web content may lead to an
unexpected process crash due to improper memory handling (bsc#1254509).
Other issues fixed and changes:
* Version 2.50.4:
* Correctly handle the program name passed to the sleep disabler.
* Ensure GStreamer is initialized before using the Quirks.
* Fix several crashes and rendering issues.
* Version 2.50.3:
* Fix seeking and looping of media elements that set the "loop" property.
* Fix several crashes and rendering issues.
* Version 2.50.2:
* Prevent unsafe URI schemes from participating in media playback.
* Make jsc_value_array_buffer_get_data() function introspectable.
* Fix logging in to Google accounts that have a WebAuthn second factor
configured.
* Fix loading webkit://gpu when there are no threads configured for GPU
rendering.
* Fix rendering gradiants that use the CSS hue interpolation method.
* Fix pasting image data from the clipboard.
* Fix font-family selection when the font name contains spaces.
* Fix the build with standard C libraries that lack execinfo.h, like Musl or
uClibc.
* Fix capturing canvas snapshots in the Web Inspector.
* Fix several crashes and rendering issues.
* Version 2.50.1:
* Improve text rendering performance.
* Fix audio playback broken on instagram.
* Fix rendering of layers with fractional transforms.
* Fix the build with ENABLE(VIDEO) disabled.
* Fix the build in s390x.
* Fix several crashes and rendering issues.
* Version 2.50.0:
* Improved rendering performance by recording each layer once and replaying
every dirty region in different worker threads.
* Enable damage propagation to the UI process by default.
* CSS property font-variant-emoji is now enabled by default.
* Font synthesis properties (bold/italic) are now properly handled.
* Ensure web view is focused on tap gesture.
* Added new API to get the theme color of a WebKitWebView.
* Version 2.49.90:
* Add support for font collection / fragment identifiers.
* Fix web process deadlock on exit.
* Fix stuttering when playing WebP animations
* Fix CSS animations with cubic-bezier timing function.
* Do not start the MemoryPressureMonitor if it’s disabled
* Fix several crashes and rendering issues.
* Updated translations.
* Version 2.48.6:
* Fix emojis incorrectly rendered in their text variant.
* Add support for font collection / fragment identifiers.
* Fix web process deadlock on exit.
* Fix stuttering when playing WebP animations.
* Fix CSS animations with cubic-bezier timing function.
* Do not start the MemoryPressureMonitor if it's disabled.
* Fix several crashes and rendering issues.
* Fix a11y regression where AT-SPI roles were mapped incorrectly.
* Disable skia on ppc64le.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server 16.0
zypper in -t patch SUSE-SLES-16.0-156=1
* SUSE Linux Enterprise Server for SAP Applications 16.0
zypper in -t patch SUSE-SLES-16.0-156=1
## Package List:
* SUSE Linux Enterprise Server 16.0 (noarch)
* WebKitGTK-6.0-lang-2.50.4-160000.1.1
* WebKitGTK-4.1-lang-2.50.4-160000.1.1
* SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64)
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-160000.1.1
* libjavascriptcoregtk-4_1-0-2.50.4-160000.1.1
* webkit2gtk3-minibrowser-debuginfo-2.50.4-160000.1.1
* webkit2gtk-4_1-injected-bundles-2.50.4-160000.1.1
* webkit-jsc-6.0-debuginfo-2.50.4-160000.1.1
* webkitgtk-6_0-injected-bundles-2.50.4-160000.1.1
* webkit2gtk4-minibrowser-debuginfo-2.50.4-160000.1.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-160000.1.1
* webkit-jsc-6.0-2.50.4-160000.1.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-160000.1.1
* libjavascriptcoregtk-6_0-1-2.50.4-160000.1.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-160000.1.1
* libwebkit2gtk-4_1-0-2.50.4-160000.1.1
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-160000.1.1
* libwebkitgtk-6_0-4-2.50.4-160000.1.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-160000.1.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-160000.1.1
* webkit-jsc-4.1-debuginfo-2.50.4-160000.1.1
* webkit2gtk4-minibrowser-2.50.4-160000.1.1
* typelib-1_0-WebKit-6_0-2.50.4-160000.1.1
* webkit-jsc-4.1-2.50.4-160000.1.1
* webkit2gtk4-debugsource-2.50.4-160000.1.1
* webkit2gtk3-debuginfo-2.50.4-160000.1.1
* webkit2gtk4-debuginfo-2.50.4-160000.1.1
* typelib-1_0-WebKit2-4_1-2.50.4-160000.1.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-160000.1.1
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-160000.1.1
* webkit2gtk3-debugsource-2.50.4-160000.1.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-160000.1.1
* webkit2gtk3-minibrowser-2.50.4-160000.1.1
* SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch)
* WebKitGTK-6.0-lang-2.50.4-160000.1.1
* WebKitGTK-4.1-lang-2.50.4-160000.1.1
* SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64)
* libjavascriptcoregtk-4_1-0-debuginfo-2.50.4-160000.1.1
* libjavascriptcoregtk-4_1-0-2.50.4-160000.1.1
* webkit2gtk3-minibrowser-debuginfo-2.50.4-160000.1.1
* webkit2gtk-4_1-injected-bundles-2.50.4-160000.1.1
* webkit-jsc-6.0-debuginfo-2.50.4-160000.1.1
* webkitgtk-6_0-injected-bundles-2.50.4-160000.1.1
* webkit2gtk4-minibrowser-debuginfo-2.50.4-160000.1.1
* typelib-1_0-JavaScriptCore-4_1-2.50.4-160000.1.1
* webkit-jsc-6.0-2.50.4-160000.1.1
* typelib-1_0-JavaScriptCore-6_0-2.50.4-160000.1.1
* libjavascriptcoregtk-6_0-1-2.50.4-160000.1.1
* typelib-1_0-WebKitWebProcessExtension-6_0-2.50.4-160000.1.1
* libwebkit2gtk-4_1-0-2.50.4-160000.1.1
* typelib-1_0-WebKit2WebExtension-4_1-2.50.4-160000.1.1
* libwebkitgtk-6_0-4-2.50.4-160000.1.1
* webkit2gtk-4_1-injected-bundles-debuginfo-2.50.4-160000.1.1
* libjavascriptcoregtk-6_0-1-debuginfo-2.50.4-160000.1.1
* webkit-jsc-4.1-debuginfo-2.50.4-160000.1.1
* webkit2gtk4-minibrowser-2.50.4-160000.1.1
* typelib-1_0-WebKit-6_0-2.50.4-160000.1.1
* webkit-jsc-4.1-2.50.4-160000.1.1
* webkit2gtk4-debugsource-2.50.4-160000.1.1
* webkit2gtk3-debuginfo-2.50.4-160000.1.1
* webkit2gtk4-debuginfo-2.50.4-160000.1.1
* typelib-1_0-WebKit2-4_1-2.50.4-160000.1.1
* webkitgtk-6_0-injected-bundles-debuginfo-2.50.4-160000.1.1
* libwebkit2gtk-4_1-0-debuginfo-2.50.4-160000.1.1
* webkit2gtk3-debugsource-2.50.4-160000.1.1
* libwebkitgtk-6_0-4-debuginfo-2.50.4-160000.1.1
* webkit2gtk3-minibrowser-2.50.4-160000.1.1
## References:
* https://www.suse.com/security/cve/CVE-2023-43000.html
* https://www.suse.com/security/cve/CVE-2025-13502.html
* https://www.suse.com/security/cve/CVE-2025-13947.html
* https://www.suse.com/security/cve/CVE-2025-14174.html
* https://www.suse.com/security/cve/CVE-2025-43272.html
* https://www.suse.com/security/cve/CVE-2025-43342.html
* https://www.suse.com/security/cve/CVE-2025-43343.html
* https://www.suse.com/security/cve/CVE-2025-43356.html
* https://www.suse.com/security/cve/CVE-2025-43368.html
* https://www.suse.com/security/cve/CVE-2025-43392.html
* https://www.suse.com/security/cve/CVE-2025-43419.html
* https://www.suse.com/security/cve/CVE-2025-43421.html
* https://www.suse.com/security/cve/CVE-2025-43425.html
* https://www.suse.com/security/cve/CVE-2025-43427.html
* https://www.suse.com/security/cve/CVE-2025-43429.html
* https://www.suse.com/security/cve/CVE-2025-43430.html
* https://www.suse.com/security/cve/CVE-2025-43431.html
* https://www.suse.com/security/cve/CVE-2025-43432.html
* https://www.suse.com/security/cve/CVE-2025-43434.html
* https://www.suse.com/security/cve/CVE-2025-43440.html
* https://www.suse.com/security/cve/CVE-2025-43443.html
* https://www.suse.com/security/cve/CVE-2025-43458.html
* https://www.suse.com/security/cve/CVE-2025-43480.html
* https://www.suse.com/security/cve/CVE-2025-43501.html
* https://www.suse.com/security/cve/CVE-2025-43529.html
* https://www.suse.com/security/cve/CVE-2025-43531.html
* https://www.suse.com/security/cve/CVE-2025-43535.html
* https://www.suse.com/security/cve/CVE-2025-43536.html
* https://www.suse.com/security/cve/CVE-2025-43541.html
* https://www.suse.com/security/cve/CVE-2025-66287.html
* https://bugzilla.suse.com/show_bug.cgi?id=1250439
* https://bugzilla.suse.com/show_bug.cgi?id=1250440
* https://bugzilla.suse.com/show_bug.cgi?id=1250441
* https://bugzilla.suse.com/show_bug.cgi?id=1250442
* https://bugzilla.suse.com/show_bug.cgi?id=1251975
* https://bugzilla.suse.com/show_bug.cgi?id=1254164
* https://bugzilla.suse.com/show_bug.cgi?id=1254165
* https://bugzilla.suse.com/show_bug.cgi?id=1254166
* https://bugzilla.suse.com/show_bug.cgi?id=1254167
* https://bugzilla.suse.com/show_bug.cgi?id=1254168
* https://bugzilla.suse.com/show_bug.cgi?id=1254169
* https://bugzilla.suse.com/show_bug.cgi?id=1254170
* https://bugzilla.suse.com/show_bug.cgi?id=1254171
* https://bugzilla.suse.com/show_bug.cgi?id=1254172
* https://bugzilla.suse.com/show_bug.cgi?id=1254174
* https://bugzilla.suse.com/show_bug.cgi?id=1254175
* https://bugzilla.suse.com/show_bug.cgi?id=1254176
* https://bugzilla.suse.com/show_bug.cgi?id=1254177
* https://bugzilla.suse.com/show_bug.cgi?id=1254179
* https://bugzilla.suse.com/show_bug.cgi?id=1254208
* https://bugzilla.suse.com/show_bug.cgi?id=1254473
* https://bugzilla.suse.com/show_bug.cgi?id=1254498
* https://bugzilla.suse.com/show_bug.cgi?id=1254509
* https://bugzilla.suse.com/show_bug.cgi?id=1255183
* https://bugzilla.suse.com/show_bug.cgi?id=1255191
* https://bugzilla.suse.com/show_bug.cgi?id=1255194
* https://bugzilla.suse.com/show_bug.cgi?id=1255195
* https://bugzilla.suse.com/show_bug.cgi?id=1255198
* https://bugzilla.suse.com/show_bug.cgi?id=1255200
* https://bugzilla.suse.com/show_bug.cgi?id=1255497
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20260123/01ae3104/attachment.htm>
More information about the sle-security-updates
mailing list