The following vulnerabilities have been discovered in the WebKitGTK web engine:
CVE-2025-43272
Big Bear discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43342
An anonymous researcher discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43343
An anonymous researcher discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43356
Jaydev Ahire discovered that a website may be able to access sensor information without user consent.
CVE-2025-43368
Pawel Wylecial discovered that processing maliciously crafted web content may lead to an unexpected process crash.
This WebKitGTK update causes a compatibility problem with older versions of Evolution when handling e-mail attachments. For this reason, fixed versions of Evolution have also been released along with this WebKitGTK update.
https://security-tracker.debian.org/tracker/DSA-6042-1
Continue reading...
CVE-2025-43272
Big Bear discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43342
An anonymous researcher discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43343
An anonymous researcher discovered that processing maliciously crafted web content may lead to an unexpected process crash.
CVE-2025-43356
Jaydev Ahire discovered that a website may be able to access sensor information without user consent.
CVE-2025-43368
Pawel Wylecial discovered that processing maliciously crafted web content may lead to an unexpected process crash.
This WebKitGTK update causes a compatibility problem with older versions of Evolution when handling e-mail attachments. For this reason, fixed versions of Evolution have also been released along with this WebKitGTK update.
https://security-tracker.debian.org/tracker/DSA-6042-1
Continue reading...
