RHSA-2025:2035: Important: SUSE Liberty Linux security update for webkit2gtk3

Wed Mar 5 16:06:45 UTC 2025

# security update for webkit2gtk3

Announcement ID: RHSA-2025:2035
Rating: Important

Cross-References:

  * CVE-2024-54543
  * CVE-2025-24143
  * CVE-2025-24150
  * CVE-2025-24158
  * CVE-2025-24162

CVSS scores:

  * CVE-2024-54543 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
  * CVE-2024-54543 ( SUSE ): 7.2 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
  * CVE-2025-24143 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
  * CVE-2025-24143 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
  * CVE-2025-24150 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2025-24150 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
  * CVE-2025-24158 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  * CVE-2025-24158 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
  * CVE-2025-24162 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  * CVE-2025-24162 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products:

  * SUSE Liberty Linux 9

An update that solves 5 vulnerabilities can now be installed.

## Description:

This security update provides a functional equivalent of RHSA-2025:2035.
The original Red Hat(R) advisory is available from the Red Hat web site at
https://access.redhat.com/errata/RHSA-2025:2035.

## Package List:

  * SUSE Liberty Linux 9:
    * webkit2gtk3 2.46.6-1.el9_5
    * webkit2gtk3-devel 2.46.6-1.el9_5
    * webkit2gtk3-jsc 2.46.6-1.el9_5
    * webkit2gtk3-jsc-devel 2.46.6-1.el9_5

## References:

  * https://www.suse.com/security/cve/CVE-2024-54543.html
  * https://www.suse.com/security/cve/CVE-2025-24143.html
  * https://www.suse.com/security/cve/CVE-2025-24150.html
  * https://www.suse.com/security/cve/CVE-2025-24158.html
  * https://www.suse.com/security/cve/CVE-2025-24162.html