cvelistv5 - cve-2025-43501

CVE-2025-43501 (GCVE-0-2025-43501)

Vulnerability from cvelistv5 – Published: 2025-12-17 20:46 – Updated: 2025-12-19 04:55

Summary

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.

Severity ?

4.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CWE

Processing maliciously crafted web content may lead to an unexpected process crash

Assigner

apple

References

URL

RHSA-2025:23967

Vulnerability from csaf_redhat - Published: 2025-12-24 07:18 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fix(es): * webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23967",
        "url": "https://access.redhat.com/errata/RHSA-2025:23967"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23967.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:04+00:00",
      "generator": {
        "date": "2025-12-24T15:04:04+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23967",
      "initial_release_date": "2025-12-24T07:18:48+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T07:18:48+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T07:18:48+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:04+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
                  "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_4.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_4.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_4?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_4?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_4?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.src",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.src",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
          "product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
        "relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
          "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:18:48+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23967"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.src",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-debugsource-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_4.x86_64",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.i686",
            "AppStream-8.4.0.Z.EUS.EXTENSION:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23972

Vulnerability from csaf_redhat - Published: 2025-12-24 08:38 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23972",
        "url": "https://access.redhat.com/errata/RHSA-2025:23972"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23972.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:12+00:00",
      "generator": {
        "date": "2025-12-24T15:04:12+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23972",
      "initial_release_date": "2025-12-24T08:38:43+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T08:38:43+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T08:38:43+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:12+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                  "product_id": "AppStream-9.4.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_4?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_4?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_4?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_4?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_4?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_4?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.src",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:38:43+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23972"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.src",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_4.x86_64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.i686",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23663

Vulnerability from csaf_redhat - Published: 2025-12-18 20:18 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23663",
        "url": "https://access.redhat.com/errata/RHSA-2025:23663"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23663.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:01+00:00",
      "generator": {
        "date": "2025-12-24T15:04:01+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23663",
      "initial_release_date": "2025-12-18T20:18:01+00:00",
      "revision_history": [
        {
          "date": "2025-12-18T20:18:01+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-18T20:18:01+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:01+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 8)",
                  "product_id": "AppStream-8.10.0.Z.MAIN.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_10?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_10?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_10?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_10?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_10?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.src",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
          "product_id": "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
        "relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
          "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T20:18:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23663"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.src",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_10.x86_64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.aarch64",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.i686",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.ppc64le",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.s390x",
            "AppStream-8.10.0.Z.MAIN.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23970

Vulnerability from csaf_redhat - Published: 2025-12-24 07:55 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23970",
        "url": "https://access.redhat.com/errata/RHSA-2025:23970"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23970.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:09+00:00",
      "generator": {
        "date": "2025-12-24T15:04:09+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23970",
      "initial_release_date": "2025-12-24T07:55:33+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T07:55:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T07:55:33+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:09+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
                  "product_id": "AppStream-9.0.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_0?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_0?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_0?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_0?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_0?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_0?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.src",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
          "product_id": "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
        "relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
          "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:55:33+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23970"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.src",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_0.x86_64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.aarch64",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.i686",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.ppc64le",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.s390x",
            "AppStream-9.0.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23974

Vulnerability from csaf_redhat - Published: 2025-12-24 09:01 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23974",
        "url": "https://access.redhat.com/errata/RHSA-2025:23974"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23974.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:13+00:00",
      "generator": {
        "date": "2025-12-24T15:04:13+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23974",
      "initial_release_date": "2025-12-24T09:01:38+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T09:01:38+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T09:01:38+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:13+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                  "product_id": "AppStream-9.6.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_6?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_6?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_6?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_6?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.src",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:01:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23974"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.src",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-debugsource-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_6.x86_64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.i686",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23973

Vulnerability from csaf_redhat - Published: 2025-12-24 08:19 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23973",
        "url": "https://access.redhat.com/errata/RHSA-2025:23973"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23973.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:07+00:00",
      "generator": {
        "date": "2025-12-24T15:04:07+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23973",
      "initial_release_date": "2025-12-24T08:19:08+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T08:19:08+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T08:19:08+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:07+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
                  "product_id": "AppStream-8.8.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:8.8::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
                  "product_id": "AppStream-8.8.0.Z.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_tus:8.8::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_8.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_8.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_8?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_8?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.src",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.src",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
          "product_id": "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
        "relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
          "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
          "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T08:19:08+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23973"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.ppc64le",
            "AppStream-8.8.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.src",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_8.x86_64",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.i686",
            "AppStream-8.8.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23971

Vulnerability from csaf_redhat - Published: 2025-12-24 07:59 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23971",
        "url": "https://access.redhat.com/errata/RHSA-2025:23971"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23971.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:11+00:00",
      "generator": {
        "date": "2025-12-24T15:04:11+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23971",
      "initial_release_date": "2025-12-24T07:59:13+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T07:59:13+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T07:59:13+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:11+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
                  "product_id": "AppStream-9.2.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:9.2::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_2?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.src",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
          "product_id": "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
        "relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
          "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:59:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23971"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.src",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_2.x86_64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.aarch64",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.i686",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.ppc64le",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.s390x",
            "AppStream-9.2.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23975

Vulnerability from csaf_redhat - Published: 2025-12-24 09:04 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkitgtk4 security update

Notes

Topic

An update for webkitgtk4 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

WebKitGTK+ is port of the WebKit portable web rendering engine to the GTK+ platform. These packages provide WebKitGTK+ for GTK+ 3. Security Fix(es): * webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536) * webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkitgtk4 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK+ is port of the WebKit portable web rendering engine to the GTK+ platform. These packages provide WebKitGTK+ for GTK+ 3.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23975",
        "url": "https://access.redhat.com/errata/RHSA-2025:23975"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23975.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkitgtk4 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:17+00:00",
      "generator": {
        "date": "2025-12-24T15:04:17+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23975",
      "initial_release_date": "2025-12-24T09:04:13+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T09:04:13+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T09:04:13+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:17+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
                  "product_id": "7Server-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_els:7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
                  "product_id": "7Server-optional-ELS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:rhel_els:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkitgtk4-0:2.50.4-2.el7_9.src",
                "product": {
                  "name": "webkitgtk4-0:2.50.4-2.el7_9.src",
                  "product_id": "webkitgtk4-0:2.50.4-2.el7_9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4@2.50.4-2.el7_9?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkitgtk4-0:2.50.4-2.el7_9.x86_64",
                "product": {
                  "name": "webkitgtk4-0:2.50.4-2.el7_9.x86_64",
                  "product_id": "webkitgtk4-0:2.50.4-2.el7_9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4@2.50.4-2.el7_9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
                "product": {
                  "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
                  "product_id": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-devel@2.50.4-2.el7_9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
                "product": {
                  "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
                  "product_id": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc@2.50.4-2.el7_9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
                "product": {
                  "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
                  "product_id": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc-devel@2.50.4-2.el7_9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
                "product": {
                  "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
                  "product_id": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-debuginfo@2.50.4-2.el7_9?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkitgtk4-0:2.50.4-2.el7_9.s390x",
                "product": {
                  "name": "webkitgtk4-0:2.50.4-2.el7_9.s390x",
                  "product_id": "webkitgtk4-0:2.50.4-2.el7_9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4@2.50.4-2.el7_9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
                "product": {
                  "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
                  "product_id": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc@2.50.4-2.el7_9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
                "product": {
                  "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
                  "product_id": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-debuginfo@2.50.4-2.el7_9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
                "product": {
                  "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
                  "product_id": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-devel@2.50.4-2.el7_9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
                "product": {
                  "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
                  "product_id": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc-devel@2.50.4-2.el7_9?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
                "product": {
                  "name": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
                  "product_id": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4@2.50.4-2.el7_9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
                "product": {
                  "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
                  "product_id": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-devel@2.50.4-2.el7_9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
                "product": {
                  "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
                  "product_id": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc@2.50.4-2.el7_9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
                "product": {
                  "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
                  "product_id": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-jsc-devel@2.50.4-2.el7_9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
                "product": {
                  "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
                  "product_id": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-debuginfo@2.50.4-2.el7_9?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
                "product": {
                  "name": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
                  "product_id": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkitgtk4-doc@2.50.4-2.el7_9?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.src as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.src",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch"
        },
        "product_reference": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
          "product_id": "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.src",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch"
        },
        "product_reference": "webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
        "relates_to_product_reference": "7Server-optional-ELS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
          "product_id": "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        },
        "product_reference": "webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
        "relates_to_product_reference": "7Server-optional-ELS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
          "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
          "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T09:04:13+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23975"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.src",
            "7Server-optional-ELS:webkitgtk4-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-debuginfo-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-devel-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-doc-0:2.50.4-2.el7_9.noarch",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-0:2.50.4-2.el7_9.x86_64",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.ppc64le",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.s390x",
            "7Server-optional-ELS:webkitgtk4-jsc-devel-0:2.50.4-2.el7_9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23969

Vulnerability from csaf_redhat - Published: 2025-12-24 07:42 - Updated: 2025-12-24 15:03

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23969",
        "url": "https://access.redhat.com/errata/RHSA-2025:23969"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23969.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:03:56+00:00",
      "generator": {
        "date": "2025-12-24T15:03:56+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23969",
      "initial_release_date": "2025-12-24T07:42:23+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T07:42:23+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T07:42:23+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:03:56+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
                  "product_id": "AppStream-8.2.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.2::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_2.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_2.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_2?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_2?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_2.src as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_2.src",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
          "product_id": "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
        "relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
          "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:42:23+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23969"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.src",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_2.x86_64",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.i686",
            "AppStream-8.2.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23968

Vulnerability from csaf_redhat - Published: 2025-12-24 07:39 - Updated: 2025-12-24 15:04

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23968",
        "url": "https://access.redhat.com/errata/RHSA-2025:23968"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23968.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:04:08+00:00",
      "generator": {
        "date": "2025-12-24T15:04:08+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23968",
      "initial_release_date": "2025-12-24T07:39:38+00:00",
      "revision_history": [
        {
          "date": "2025-12-24T07:39:38+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-24T07:39:38+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:04:08+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.AUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_aus:8.6::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.E4S",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_e4s:8.6::appstream"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
                  "product_id": "AppStream-8.6.0.Z.TUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_tus:8.6::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_6?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_6?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_6?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_6?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el8_6?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.src",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
          "product_id": "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
        "relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
          "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
          "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-24T07:39:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23968"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.AUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.aarch64",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.ppc64le",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.s390x",
            "AppStream-8.6.0.Z.E4S:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.src",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-debugsource-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-0:2.50.4-1.el8_6.x86_64",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.i686",
            "AppStream-8.6.0.Z.TUS:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el8_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

RHSA-2025:23700

Vulnerability from csaf_redhat - Published: 2025-12-18 22:17 - Updated: 2025-12-24 15:03

Summary

Red Hat Security Advisory: webkit2gtk3 security update

Notes

Topic

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform.\n\nSecurity Fix(es):\n\n* webkitgtk: webkitgtk: Use-after-free due to improper memory management (CVE-2025-43529)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43501)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43531)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43535)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash (CVE-2025-43536)\n\n* webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash (CVE-2025-43541)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2025:23700",
        "url": "https://access.redhat.com/errata/RHSA-2025:23700"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2423166",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
      },
      {
        "category": "external",
        "summary": "2423185",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
      },
      {
        "category": "external",
        "summary": "2423187",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
      },
      {
        "category": "external",
        "summary": "2423188",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
      },
      {
        "category": "external",
        "summary": "2423190",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
      },
      {
        "category": "external",
        "summary": "2423191",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_23700.json"
      }
    ],
    "title": "Red Hat Security Advisory: webkit2gtk3 security update",
    "tracking": {
      "current_release_date": "2025-12-24T15:03:58+00:00",
      "generator": {
        "date": "2025-12-24T15:03:58+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.14"
        }
      },
      "id": "RHSA-2025:23700",
      "initial_release_date": "2025-12-18T22:17:44+00:00",
      "revision_history": [
        {
          "date": "2025-12-18T22:17:44+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2025-12-18T22:17:44+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-24T15:03:58+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.7.0.Z.MAIN",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_7?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.src",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.src",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_7?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_7?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "webkit2gtk3-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debugsource@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-debuginfo@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-devel-debuginfo@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-debuginfo@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                "product": {
                  "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_id": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/webkit2gtk3-jsc-devel-debuginfo@2.50.4-1.el9_7?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.src",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        },
        "product_reference": "webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
        "relates_to_product_reference": "AppStream-9.7.0.Z.MAIN"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2025-12-17T15:52:37.544000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423185"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423185",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423185"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43529",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "discovery_date": "2025-12-17T14:16:40.676000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423166"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: webkitgtk: Use-after-free due to improper memory management",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability is rated IMPORTANT for Red Hat products. A use-after-free flaw in webkitgtk, when processing maliciously crafted web content, can lead to remote code execution. Successful exploitation requires user interaction, where a victim must visit a malicious website.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423166",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423166"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43529",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43529"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2025-12-16T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, avoid processing untrusted web content. Additionally, disabling the JavaScript JIT compiler can reduce the attack surface. For applications using WebKitGTK, set the environment variable `JavaScriptCoreUseJIT=0` before launching the application. This may impact performance for JavaScript-heavy web content.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2025-12-15T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: webkitgtk: Use-after-free due to improper memory management"
    },
    {
      "cve": "CVE-2025-43531",
      "cwe": {
        "id": "CWE-362",
        "name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
      },
      "discovery_date": "2025-12-17T15:55:23.438000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423187"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a race condition due to improper state handling and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423187",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423187"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43531",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43531"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43535",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2025-12-17T15:56:22.257000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423188"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423188",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423188"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43535",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43535"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43536",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2025-12-17T15:57:30.015000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected process crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43536",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43536"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash"
    },
    {
      "cve": "CVE-2025-43541",
      "cwe": {
        "id": "CWE-843",
        "name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
      },
      "discovery_date": "2025-12-17T15:58:33.802000+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2423191"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper state handling and result in an unexpected crash.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to trick a user into processing or loading malicious web content. Due to this reason, this flaw has been rated with an important severity.\nAdditionally, this issue can cause an unexpected crash but the possibility of remote code execution is not discarded.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
          "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "RHBZ#2423191",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2423191"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-43541",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43541"
        },
        {
          "category": "external",
          "summary": "https://webkitgtk.org/security/WSA-2025-0010.html",
          "url": "https://webkitgtk.org/security/WSA-2025-0010.html"
        }
      ],
      "release_date": "2025-12-17T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-12-18T22:17:44+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2025:23700"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
          "product_ids": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.src",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-debugsource-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-devel-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-debuginfo-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-0:2.50.4-1.el9_7.x86_64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.aarch64",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.i686",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.ppc64le",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.s390x",
            "AppStream-9.7.0.Z.MAIN:webkit2gtk3-jsc-devel-debuginfo-0:2.50.4-1.el9_7.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash"
    }
  ]
}

NCSC-2025-0396

Vulnerability from csaf_ncscnl - Published: 2025-12-15 09:06 - Updated: 2025-12-15 09:06

Summary

Kwetsbaarheden verholpen in Apple macOS

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Apple heeft kwetsbaarheden verholpen in macOS Sonoma (14.8.3), macOS Sequoia (15.7.3) en macOS Tahoe (26.2).

Interpretaties

De kwetsbaarheden omvatten een breed scala aan problemen, waaronder geheugenbeschadiging, logboekproblemen, en ongeoorloofde toegang tot gevoelige gebruikersgegevens. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om ongeautoriseerde toegang te verkrijgen of om de stabiliteit van het systeem in gevaar te brengen. Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren of bestand te openen.

Oplossingen

Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-20

Improper Input Validation

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-125

Out-of-bounds Read

CWE-190

Integer Overflow or Wraparound

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-275

CWE-280

Improper Handling of Insufficient Permissions or Privileges

CWE-284

Improper Access Control

CWE-359

Exposure of Private Personal Information to an Unauthorized Actor

CWE-371

CWE-404

Improper Resource Shutdown or Release

CWE-416

Use After Free

CWE-451

User Interface (UI) Misrepresentation of Critical Information

CWE-456

Missing Initialization of a Variable

CWE-488

Exposure of Data Element to Wrong Session

CWE-524

Use of Cache Containing Sensitive Information

CWE-532

Insertion of Sensitive Information into Log File

CWE-732

Incorrect Permission Assignment for Critical Resource

CWE-862

Missing Authorization

CWE-1018

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Apple heeft kwetsbaarheden verholpen in macOS Sonoma (14.8.3), macOS Sequoia (15.7.3) en macOS Tahoe (26.2).",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden omvatten een breed scala aan problemen, waaronder geheugenbeschadiging, logboekproblemen, en ongeoorloofde toegang tot gevoelige gebruikersgegevens. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om ongeautoriseerde toegang te verkrijgen of om de stabiliteit van het systeem in gevaar te brengen.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren of bestand te openen.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "CWE-275",
        "title": "CWE-275"
      },
      {
        "category": "general",
        "text": "Improper Handling of Insufficient Permissions or Privileges ",
        "title": "CWE-280"
      },
      {
        "category": "general",
        "text": "Improper Access Control",
        "title": "CWE-284"
      },
      {
        "category": "general",
        "text": "Exposure of Private Personal Information to an Unauthorized Actor",
        "title": "CWE-359"
      },
      {
        "category": "general",
        "text": "CWE-371",
        "title": "CWE-371"
      },
      {
        "category": "general",
        "text": "Improper Resource Shutdown or Release",
        "title": "CWE-404"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "User Interface (UI) Misrepresentation of Critical Information",
        "title": "CWE-451"
      },
      {
        "category": "general",
        "text": "Missing Initialization of a Variable",
        "title": "CWE-456"
      },
      {
        "category": "general",
        "text": "Exposure of Data Element to Wrong Session",
        "title": "CWE-488"
      },
      {
        "category": "general",
        "text": "Use of Cache Containing Sensitive Information",
        "title": "CWE-524"
      },
      {
        "category": "general",
        "text": "Insertion of Sensitive Information into Log File",
        "title": "CWE-532"
      },
      {
        "category": "general",
        "text": "Incorrect Permission Assignment for Critical Resource",
        "title": "CWE-732"
      },
      {
        "category": "general",
        "text": "Missing Authorization",
        "title": "CWE-862"
      },
      {
        "category": "general",
        "text": "CWE-1018",
        "title": "CWE-1018"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://support.apple.com/en-us/125886"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://support.apple.com/en-us/125887"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://support.apple.com/en-us/125888"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Apple macOS",
    "tracking": {
      "current_release_date": "2025-12-15T09:06:36.450655Z",
      "generator": {
        "date": "2025-08-04T16:30:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.3"
        }
      },
      "id": "NCSC-2025-0396",
      "initial_release_date": "2025-12-15T09:06:36.450655Z",
      "revision_history": [
        {
          "date": "2025-12-15T09:06:36.450655Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-1"
                }
              }
            ],
            "category": "product_name",
            "name": "macOS Sequoia"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-2"
                }
              }
            ],
            "category": "product_name",
            "name": "macOS Sonoma"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-3"
                }
              }
            ],
            "category": "product_name",
            "name": "macOS Tahoe"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-7264",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "Multiple vulnerabilities across Oracle Communications Applications, MySQL, Database Server, and NetApp products can be exploited by remote attackers, affecting confidentiality, integrity, and availability, with varying CVSS scores indicating medium to significant damage potential.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-7264 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-7264.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2024-7264"
    },
    {
      "cve": "CVE-2024-8906",
      "notes": [
        {
          "category": "description",
          "text": "Chrome 129 and Microsoft Edge have multiple vulnerabilities, including remote code execution and denial of service risks, with specific issues like CVE-2024-8906 affecting Chrome\u0027s Downloads UI.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8906 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-8906.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2024-8906"
    },
    {
      "cve": "CVE-2025-5918",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "The libarchive library update addresses multiple vulnerabilities, including integer overflows and heap buffer over reads, with a specific issue allowing reading past EOF in piped file streams, affecting Apple Software.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-5918 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5918.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-5918"
    },
    {
      "cve": "CVE-2025-9086",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "Recent updates to curl and Apple Software address multiple vulnerabilities, including out-of-bounds reads, cookie path issues, and denial of service risks in various versions of affected products.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-9086 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9086.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-9086"
    },
    {
      "cve": "CVE-2025-14174",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "description",
          "text": "Google Chromium has multiple vulnerabilities, including a high-severity out of bounds memory access in ANGLE affecting various browsers, alongside resolved use-after-free and memory corruption issues.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-14174 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-14174.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-14174"
    },
    {
      "cve": "CVE-2025-43320",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 has resolved an issue where an app could bypass launch constraint protections and execute malicious code with elevated privileges by implementing additional logic.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43320 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43320.json"
        }
      ],
      "title": "CVE-2025-43320"
    },
    {
      "cve": "CVE-2025-43410",
      "cwe": {
        "id": "CWE-524",
        "name": "Use of Cache Containing Sensitive Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use of Cache Containing Sensitive Information",
          "title": "CWE-524"
        },
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.2 and macOS Sonoma 14.8.2 have resolved a cache handling issue that allowed physical access attackers to view deleted notes through improved cache management.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43410 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43410.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.4,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-43410"
    },
    {
      "cve": "CVE-2025-43416",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a logic issue related to access to protected user data through enhanced restrictions.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43416 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43416.json"
        }
      ],
      "title": "CVE-2025-43416"
    },
    {
      "cve": "CVE-2025-43428",
      "notes": [
        {
          "category": "description",
          "text": "A configuration issue was resolved by implementing additional restrictions to enhance system security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43428 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43428.json"
        }
      ],
      "title": "CVE-2025-43428"
    },
    {
      "cve": "CVE-2025-43463",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates in macOS versions 14.8.3, 26.1, and 15.7.3 have resolved a parsing issue in directory path handling through enhanced path validation, potentially allowing apps to access sensitive user data.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43463 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43463.json"
        }
      ],
      "title": "CVE-2025-43463"
    },
    {
      "cve": "CVE-2025-43482",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have resolved a denial-of-service vulnerability through enhanced input validation measures.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43482 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43482.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-43482"
    },
    {
      "cve": "CVE-2025-43501",
      "notes": [
        {
          "category": "description",
          "text": "A buffer overflow vulnerability has been addressed through improved memory management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43501 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43501.json"
        }
      ],
      "title": "CVE-2025-43501"
    },
    {
      "cve": "CVE-2025-43509",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have resolved the issue of apps accessing sensitive user data through enhanced data protection measures.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43509 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43509.json"
        }
      ],
      "title": "CVE-2025-43509"
    },
    {
      "cve": "CVE-2025-43511",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "iOS 18.7.2 and iPadOS 18.7.2 addressed a use-after-free vulnerability in memory management that could lead to process crashes when handling malicious web content.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43511 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43511.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-43511"
    },
    {
      "cve": "CVE-2025-43512",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a logic issue that could allow privilege elevation through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43512 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43512.json"
        }
      ],
      "title": "CVE-2025-43512"
    },
    {
      "cve": "CVE-2025-43513",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates in macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 addressed a permissions issue by removing vulnerable code that allowed unauthorized access to sensitive location information.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43513 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43513.json"
        }
      ],
      "title": "CVE-2025-43513"
    },
    {
      "cve": "CVE-2025-43514",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed through improved cache management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43514 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43514.json"
        }
      ],
      "title": "CVE-2025-43514"
    },
    {
      "cve": "CVE-2025-43516",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a session management vulnerability that allowed users with Voice Control enabled to transcribe another user\u0027s activity through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43516 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43516.json"
        }
      ],
      "title": "CVE-2025-43516"
    },
    {
      "cve": "CVE-2025-43517",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 addressed a privacy issue related to log entries by enhancing private data redaction, preventing unauthorized access to protected user data.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43517 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43517.json"
        }
      ],
      "title": "CVE-2025-43517"
    },
    {
      "cve": "CVE-2025-43518",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a logic issue in the spellcheck API that allowed inappropriate file access through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43518 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43518.json"
        }
      ],
      "title": "CVE-2025-43518"
    },
    {
      "cve": "CVE-2025-43519",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a permissions issue that previously allowed apps to access sensitive user data by implementing additional restrictions.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43519 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43519.json"
        }
      ],
      "title": "CVE-2025-43519"
    },
    {
      "cve": "CVE-2025-43521",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 resolves a downgrade issue on Intel-based Mac computers by implementing additional code-signing restrictions to enhance user data protection.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43521 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43521.json"
        }
      ],
      "title": "CVE-2025-43521"
    },
    {
      "cve": "CVE-2025-43522",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 resolves a downgrade issue on Intel-based Mac computers by implementing enhanced code-signing restrictions to protect user-sensitive data from unauthorized access.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43522 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43522.json"
        }
      ],
      "title": "CVE-2025-43522"
    },
    {
      "cve": "CVE-2025-43523",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 has resolved a permissions issue that previously allowed unauthorized access to sensitive user data by implementing additional restrictions.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43523 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43523.json"
        }
      ],
      "title": "CVE-2025-43523"
    },
    {
      "cve": "CVE-2025-43526",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed through the implementation of enhanced URL validation measures.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43526 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43526.json"
        }
      ],
      "title": "CVE-2025-43526"
    },
    {
      "cve": "CVE-2025-43527",
      "cwe": {
        "id": "CWE-280",
        "name": "Improper Handling of Insufficient Permissions or Privileges "
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Handling of Insufficient Permissions or Privileges ",
          "title": "CWE-280"
        },
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 has addressed a permissions issue that could allow apps to gain root privileges through additional restrictions.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43527 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43527.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-43527"
    },
    {
      "cve": "CVE-2025-43529",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates addressed a use-after-free vulnerability and a memory corruption issue by enhancing memory management and implementing improved validation measures.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43529 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43529.json"
        }
      ],
      "title": "CVE-2025-43529"
    },
    {
      "cve": "CVE-2025-43530",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have resolved the issue of apps accessing sensitive user data through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43530 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43530.json"
        }
      ],
      "title": "CVE-2025-43530"
    },
    {
      "cve": "CVE-2025-43531",
      "notes": [
        {
          "category": "description",
          "text": "A race condition issue was effectively resolved through enhancements in state management, improving system reliability.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43531 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43531.json"
        }
      ],
      "title": "CVE-2025-43531"
    },
    {
      "cve": "CVE-2025-43532",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
          "title": "CWE-120"
        },
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a memory corruption issue that could lead to unexpected app termination when processing malicious data through improved bounds checking.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43532 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43532.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1",
            "CSAFPID-2",
            "CSAFPID-3"
          ]
        }
      ],
      "title": "CVE-2025-43532"
    },
    {
      "cve": "CVE-2025-43533",
      "notes": [
        {
          "category": "description",
          "text": "Enhanced input validation measures have resolved multiple memory corruption issues, improving overall system security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43533 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43533.json"
        }
      ],
      "title": "CVE-2025-43533"
    },
    {
      "cve": "CVE-2025-43535",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed through improvements in memory management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43535 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43535.json"
        }
      ],
      "title": "CVE-2025-43535"
    },
    {
      "cve": "CVE-2025-43536",
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was addressed through improved memory management techniques, enhancing overall system stability and security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43536 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43536.json"
        }
      ],
      "title": "CVE-2025-43536"
    },
    {
      "cve": "CVE-2025-43538",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 has addressed a logging issue that previously allowed unauthorized access to sensitive user data through enhanced data redaction measures.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43538 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43538.json"
        }
      ],
      "title": "CVE-2025-43538"
    },
    {
      "cve": "CVE-2025-43539",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a memory corruption issue through enhanced bounds checks during file processing.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43539 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43539.json"
        }
      ],
      "title": "CVE-2025-43539"
    },
    {
      "cve": "CVE-2025-43541",
      "notes": [
        {
          "category": "description",
          "text": "A type confusion vulnerability was effectively addressed through improved state management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43541 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43541.json"
        }
      ],
      "title": "CVE-2025-43541"
    },
    {
      "cve": "CVE-2025-43542",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 resolves the issue of password fields being unintentionally exposed during FaceTime remote control through enhanced state management.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43542 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43542.json"
        }
      ],
      "title": "CVE-2025-43542"
    },
    {
      "cve": "CVE-2025-46276",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed an information disclosure issue by implementing enhanced privacy controls to prevent unauthorized access to sensitive user data.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46276 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46276.json"
        }
      ],
      "title": "CVE-2025-46276"
    },
    {
      "cve": "CVE-2025-46277",
      "notes": [
        {
          "category": "description",
          "text": "A logging issue was addressed through the enhancement of data redaction measures to improve security and protect sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46277 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46277.json"
        }
      ],
      "title": "CVE-2025-46277"
    },
    {
      "cve": "CVE-2025-46278",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed through improved cache management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46278 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46278.json"
        }
      ],
      "title": "CVE-2025-46278"
    },
    {
      "cve": "CVE-2025-46279",
      "notes": [
        {
          "category": "description",
          "text": "A permissions issue was addressed through the implementation of additional restrictions to enhance security controls.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46279 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46279.json"
        }
      ],
      "title": "CVE-2025-46279"
    },
    {
      "cve": "CVE-2025-46281",
      "notes": [
        {
          "category": "description",
          "text": "A logic issue was resolved through the implementation of enhanced checks, improving the overall security posture.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46281 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46281.json"
        }
      ],
      "title": "CVE-2025-46281"
    },
    {
      "cve": "CVE-2025-46282",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed by implementing additional permissions checks to enhance security measures.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46282 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46282.json"
        }
      ],
      "title": "CVE-2025-46282"
    },
    {
      "cve": "CVE-2025-46283",
      "notes": [
        {
          "category": "description",
          "text": "A logic issue was effectively addressed through the implementation of enhanced validation measures, improving overall system integrity.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46283 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46283.json"
        }
      ],
      "title": "CVE-2025-46283"
    },
    {
      "cve": "CVE-2025-46285",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed an integer overflow vulnerability that could grant root privileges by implementing 64-bit timestamps.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46285 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46285.json"
        }
      ],
      "title": "CVE-2025-46285"
    },
    {
      "cve": "CVE-2025-46287",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates in macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 resolved an inconsistent user interface issue related to FaceTime caller ID spoofing through enhanced state management.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46287 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46287.json"
        }
      ],
      "title": "CVE-2025-46287"
    },
    {
      "cve": "CVE-2025-46288",
      "notes": [
        {
          "category": "description",
          "text": "A permissions issue was addressed through the implementation of additional restrictions to enhance security controls.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46288 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46288.json"
        }
      ],
      "title": "CVE-2025-46288"
    },
    {
      "cve": "CVE-2025-46289",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 resolved a logic issue in file handling that could have allowed unauthorized access to protected user data.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46289 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46289.json"
        }
      ],
      "title": "CVE-2025-46289"
    },
    {
      "cve": "CVE-2025-46291",
      "notes": [
        {
          "category": "description",
          "text": "A logic issue was effectively addressed through the implementation of enhanced validation measures, improving overall system integrity.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1",
          "CSAFPID-2",
          "CSAFPID-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46291 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46291.json"
        }
      ],
      "title": "CVE-2025-46291"
    }
  ]
}

NCSC-2025-0397

Vulnerability from csaf_ncscnl - Published: 2025-12-15 09:08 - Updated: 2025-12-15 09:08

Summary

Kwetsbaarheden verholpen in Apple iOS en iPadOS

Notes

Feiten

Apple heeft kwetsbaarheden verholpen in iOS en iPadOS (versies 18.7.3 en 26.2)

Interpretaties

De kwetsbaarheden omvatten onder andere een use-after-free probleem, een geheugenbeschadiging, en een logboekprobleem dat ongeautoriseerde toegang tot gevoelige gebruikersdata mogelijk maakte. Deze kwetsbaarheden konden worden uitgebuit door kwaadwillenden via speciaal vervaardigde gegevens of door misbruik van de loggingmechanismen. De fixes omvatten verbeterde geheugenbeheerpraktijken en strengere controles om de integriteit van gebruikersgegevens te waarborgen. Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren, een malafide bestand te openen of link te volgen.

Oplossingen

Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-20

Improper Input Validation

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-125

Out-of-bounds Read

CWE-190

Integer Overflow or Wraparound

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-371

CWE-416

Use After Free

CWE-451

User Interface (UI) Misrepresentation of Critical Information

CWE-456

Missing Initialization of a Variable

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Apple heeft kwetsbaarheden verholpen in iOS en iPadOS (versies 18.7.3 en 26.2)",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "De kwetsbaarheden omvatten onder andere een use-after-free probleem, een geheugenbeschadiging, en een logboekprobleem dat ongeautoriseerde toegang tot gevoelige gebruikersdata mogelijk maakte. Deze kwetsbaarheden konden worden uitgebuit door kwaadwillenden via speciaal vervaardigde gegevens of door misbruik van de loggingmechanismen. De fixes omvatten verbeterde geheugenbeheerpraktijken en strengere controles om de integriteit van gebruikersgegevens te waarborgen.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden een malafide app te installeren, een malafide bestand te openen of link te volgen.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
        "title": "CWE-119"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Out-of-bounds Read",
        "title": "CWE-125"
      },
      {
        "category": "general",
        "text": "Integer Overflow or Wraparound",
        "title": "CWE-190"
      },
      {
        "category": "general",
        "text": "Exposure of Sensitive Information to an Unauthorized Actor",
        "title": "CWE-200"
      },
      {
        "category": "general",
        "text": "CWE-371",
        "title": "CWE-371"
      },
      {
        "category": "general",
        "text": "Use After Free",
        "title": "CWE-416"
      },
      {
        "category": "general",
        "text": "User Interface (UI) Misrepresentation of Critical Information",
        "title": "CWE-451"
      },
      {
        "category": "general",
        "text": "Missing Initialization of a Variable",
        "title": "CWE-456"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://support.apple.com/en-us/125884"
      },
      {
        "category": "external",
        "summary": "Reference",
        "url": "https://support.apple.com/en-us/125885"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Apple iOS en iPadOS",
    "tracking": {
      "current_release_date": "2025-12-15T09:08:39.804149Z",
      "generator": {
        "date": "2025-08-04T16:30:00Z",
        "engine": {
          "name": "V.A.",
          "version": "1.3"
        }
      },
      "id": "NCSC-2025-0397",
      "initial_release_date": "2025-12-15T09:08:39.804149Z",
      "revision_history": [
        {
          "date": "2025-12-15T09:08:39.804149Z",
          "number": "1.0.0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:unknown/*",
                "product": {
                  "name": "vers:unknown/*",
                  "product_id": "CSAFPID-1"
                }
              }
            ],
            "category": "product_name",
            "name": "iOS, iPadOS"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-7264",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        },
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "Multiple vulnerabilities across Oracle Communications Applications, MySQL, Database Server, and NetApp products can be exploited by remote attackers, affecting confidentiality, integrity, and availability, with varying CVSS scores indicating medium to significant damage potential.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-7264 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-7264.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2024-7264"
    },
    {
      "cve": "CVE-2025-5918",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "The libarchive library update addresses multiple vulnerabilities, including integer overflows and heap buffer over reads, with a specific issue allowing reading past EOF in piped file streams, affecting Apple Software.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-5918 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5918.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2025-5918"
    },
    {
      "cve": "CVE-2025-9086",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "other",
          "text": "Out-of-bounds Read",
          "title": "CWE-125"
        },
        {
          "category": "description",
          "text": "Recent updates to curl and Apple Software address multiple vulnerabilities, including out-of-bounds reads, cookie path issues, and denial of service risks in various versions of affected products.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-9086 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9086.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2025-9086"
    },
    {
      "cve": "CVE-2025-14174",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
          "title": "CWE-119"
        },
        {
          "category": "description",
          "text": "Google Chromium has multiple vulnerabilities, including a high-severity out of bounds memory access in ANGLE affecting various browsers, alongside resolved use-after-free and memory corruption issues.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-14174 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-14174.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2025-14174"
    },
    {
      "cve": "CVE-2025-43428",
      "notes": [
        {
          "category": "description",
          "text": "A configuration issue was resolved by implementing additional restrictions to enhance system security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43428 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43428.json"
        }
      ],
      "title": "CVE-2025-43428"
    },
    {
      "cve": "CVE-2025-43475",
      "notes": [
        {
          "category": "description",
          "text": "A logging issue was addressed through the enhancement of data redaction measures to improve security and protect sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43475 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43475.json"
        }
      ],
      "title": "CVE-2025-43475"
    },
    {
      "cve": "CVE-2025-43501",
      "notes": [
        {
          "category": "description",
          "text": "A buffer overflow vulnerability has been addressed through improved memory management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43501 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43501.json"
        }
      ],
      "title": "CVE-2025-43501"
    },
    {
      "cve": "CVE-2025-43511",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "other",
          "text": "Use After Free",
          "title": "CWE-416"
        },
        {
          "category": "description",
          "text": "iOS 18.7.2 and iPadOS 18.7.2 addressed a use-after-free vulnerability in memory management that could lead to process crashes when handling malicious web content.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43511 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43511.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2025-43511"
    },
    {
      "cve": "CVE-2025-43512",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a logic issue that could allow privilege elevation through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43512 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43512.json"
        }
      ],
      "title": "CVE-2025-43512"
    },
    {
      "cve": "CVE-2025-43518",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a logic issue in the spellcheck API that allowed inappropriate file access through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43518 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43518.json"
        }
      ],
      "title": "CVE-2025-43518"
    },
    {
      "cve": "CVE-2025-43529",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates addressed a use-after-free vulnerability and a memory corruption issue by enhancing memory management and implementing improved validation measures.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43529 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43529.json"
        }
      ],
      "title": "CVE-2025-43529"
    },
    {
      "cve": "CVE-2025-43530",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have resolved the issue of apps accessing sensitive user data through enhanced checks.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43530 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43530.json"
        }
      ],
      "title": "CVE-2025-43530"
    },
    {
      "cve": "CVE-2025-43531",
      "notes": [
        {
          "category": "description",
          "text": "A race condition issue was effectively resolved through enhancements in state management, improving system reliability.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43531 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43531.json"
        }
      ],
      "title": "CVE-2025-43531"
    },
    {
      "cve": "CVE-2025-43532",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
          "title": "CWE-120"
        },
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a memory corruption issue that could lead to unexpected app termination when processing malicious data through improved bounds checking.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43532 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43532.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1"
          ]
        }
      ],
      "title": "CVE-2025-43532"
    },
    {
      "cve": "CVE-2025-43533",
      "notes": [
        {
          "category": "description",
          "text": "Enhanced input validation measures have resolved multiple memory corruption issues, improving overall system security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43533 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43533.json"
        }
      ],
      "title": "CVE-2025-43533"
    },
    {
      "cve": "CVE-2025-43535",
      "notes": [
        {
          "category": "description",
          "text": "The issue was addressed through improvements in memory management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43535 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43535.json"
        }
      ],
      "title": "CVE-2025-43535"
    },
    {
      "cve": "CVE-2025-43536",
      "notes": [
        {
          "category": "description",
          "text": "A use-after-free vulnerability was addressed through improved memory management techniques, enhancing overall system stability and security.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43536 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43536.json"
        }
      ],
      "title": "CVE-2025-43536"
    },
    {
      "cve": "CVE-2025-43538",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 has addressed a logging issue that previously allowed unauthorized access to sensitive user data through enhanced data redaction measures.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43538 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43538.json"
        }
      ],
      "title": "CVE-2025-43538"
    },
    {
      "cve": "CVE-2025-43539",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed a memory corruption issue through enhanced bounds checks during file processing.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43539 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43539.json"
        }
      ],
      "title": "CVE-2025-43539"
    },
    {
      "cve": "CVE-2025-43541",
      "notes": [
        {
          "category": "description",
          "text": "A type confusion vulnerability was effectively addressed through improved state management techniques.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43541 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43541.json"
        }
      ],
      "title": "CVE-2025-43541"
    },
    {
      "cve": "CVE-2025-43542",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sequoia 15.7.3 resolves the issue of password fields being unintentionally exposed during FaceTime remote control through enhanced state management.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-43542 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43542.json"
        }
      ],
      "title": "CVE-2025-43542"
    },
    {
      "cve": "CVE-2025-46276",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed an information disclosure issue by implementing enhanced privacy controls to prevent unauthorized access to sensitive user data.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46276 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46276.json"
        }
      ],
      "title": "CVE-2025-46276"
    },
    {
      "cve": "CVE-2025-46277",
      "notes": [
        {
          "category": "description",
          "text": "A logging issue was addressed through the enhancement of data redaction measures to improve security and protect sensitive information.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46277 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46277.json"
        }
      ],
      "title": "CVE-2025-46277"
    },
    {
      "cve": "CVE-2025-46279",
      "notes": [
        {
          "category": "description",
          "text": "A permissions issue was addressed through the implementation of additional restrictions to enhance security controls.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46279 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46279.json"
        }
      ],
      "title": "CVE-2025-46279"
    },
    {
      "cve": "CVE-2025-46285",
      "notes": [
        {
          "category": "description",
          "text": "macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 have addressed an integer overflow vulnerability that could grant root privileges by implementing 64-bit timestamps.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46285 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46285.json"
        }
      ],
      "title": "CVE-2025-46285"
    },
    {
      "cve": "CVE-2025-46287",
      "notes": [
        {
          "category": "description",
          "text": "Recent updates in macOS Sonoma 14.8.3 and macOS Sequoia 15.7.3 resolved an inconsistent user interface issue related to FaceTime caller ID spoofing through enhanced state management.",
          "title": "Summary"
        },
        {
          "category": "general",
          "text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
          "title": "CVSSV4"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46287 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46287.json"
        }
      ],
      "title": "CVE-2025-46287"
    },
    {
      "cve": "CVE-2025-46288",
      "notes": [
        {
          "category": "description",
          "text": "A permissions issue was addressed through the implementation of additional restrictions to enhance security controls.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46288 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46288.json"
        }
      ],
      "title": "CVE-2025-46288"
    },
    {
      "cve": "CVE-2025-46292",
      "notes": [
        {
          "category": "description",
          "text": "The issue was resolved through the implementation of additional entitlement checks to enhance security measures.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-46292 | NCSC-NL Website",
          "url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46292.json"
        }
      ],
      "title": "CVE-2025-46292"
    }
  ]
}

FKIE_CVE-2025-43501

Vulnerability from fkie_nvd - Published: 2025-12-17 21:16 - Updated: 2025-12-18 19:24

Severity ?

4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Summary

References

URL	Tags
product-security@apple.com	https://support.apple.com/en-us/125884	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/125885	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/125886	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/125891	Release Notes, Vendor Advisory
product-security@apple.com	https://support.apple.com/en-us/125892	Release Notes, Vendor Advisory

Impacted products

Vendor	Product	Version
apple	safari	*
apple	ipados	*
apple	ipados	*
apple	iphone_os	*
apple	iphone_os	*
apple	macos	*
apple	visionos	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3ECBF838-536C-47F9-9876-C526B8ED32EC",
              "versionEndExcluding": "26.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6547722A-1226-4E23-B3AE-8692B07C2657",
              "versionEndExcluding": "18.7.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B71D919-1AA2-4F17-A834-4B703E36F7E2",
              "versionEndExcluding": "26.2",
              "versionStartIncluding": "26.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8928A377-93BD-49AD-B4FE-5B2328EBDB70",
              "versionEndExcluding": "18.7.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "10FD01C3-D77F-4FE4-8195-F2C59FB1321C",
              "versionEndExcluding": "26.2",
              "versionStartIncluding": "26.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBA92B6D-E36C-432B-A041-94D81427CD75",
              "versionEndExcluding": "26.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:apple:visionos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB10D901-4800-4DF9-AB35-48017C178161",
              "versionEndExcluding": "26.2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash."
    }
  ],
  "id": "CVE-2025-43501",
  "lastModified": "2025-12-18T19:24:29.790",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-12-17T21:16:09.043",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/125884"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/125885"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/125886"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/125891"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/125892"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2025-AVI-1110

Vulnerability from certfr_avis - Published: 2025-12-15 - Updated: 2025-12-15

De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

Apple indique que les vulnérabilités CVE-2025-14174 et CVE-2025-43529 sont activement exploitées.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Apple	macOS	macOS Sonoma versions antérieures à 14.8.3
Apple	watchOS	watchOS versions antérieures à 26.2
Apple	iOS	iOS versions 26.x antérieures à 26.2
Apple	macOS	macOS Tahoe versions antérieures à 26.2
Apple	macOS	macOS Sequoia versions antérieures à 15.7.3
Apple	tvOS	tvOS versions antérieures à 26.2
Apple	Safari	Safari versions antérieures à 26.2
Apple	iOS	iOS versions 18.7.x antérieures à 18.7.3
Apple	iPadOS	iPadOS versions 18.7.x antérieures à 18.7.3
Apple	visionOS	visionOS versions antérieures à 26.2
Apple	iPadOS	iPadOS versions 26.x antérieures à 26.2

References

Title

Publication Time

WID-SEC-W-2025-2891

Vulnerability from csaf_certbund - Published: 2025-12-18 23:00 - Updated: 2025-12-23 23:00

Summary

WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

WebKitGTK ist ein Webbrowser. Dieser nutzt die WebKit-Engine, die auch von Safari und vielen anderen Apps auf macOS, iOS und Linux verwendet wird.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in WebKitGTK ausnutzen, um beliebigen Programmcode auszuführen oder einen Denial-of-Service-Zustand zu verursachen.

Betroffene Betriebssysteme

- Linux

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "WebKitGTK ist ein Webbrowser. Dieser nutzt die WebKit-Engine, die auch von Safari und vielen anderen Apps auf macOS, iOS und Linux verwendet wird.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in WebKitGTK ausnutzen, um beliebigen Programmcode auszuf\u00fchren oder einen Denial-of-Service-Zustand zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2891 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2891.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2891 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2891"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory vom 2025-12-18",
        "url": "https://access.redhat.com/errata/RHSA-2025:23700"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory vom 2025-12-18",
        "url": "https://access.redhat.com/errata/RHSA-2025:23663"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:23663 vom 2025-12-19",
        "url": "https://errata.build.resf.org/RLSA-2025:23663"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-23700 vom 2025-12-19",
        "url": "https://linux.oracle.com/errata/ELSA-2025-23700.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2025:23700 vom 2025-12-19",
        "url": "https://errata.build.resf.org/RLSA-2025:23700"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-23663 vom 2025-12-19",
        "url": "https://linux.oracle.com/errata/ELSA-2025-23663.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23972 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23972"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23971 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23971"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23970 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23970"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23969 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23969"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23968 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23968"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:23967 vom 2025-12-24",
        "url": "https://access.redhat.com/errata/RHSA-2025:23967"
      }
    ],
    "source_lang": "en-US",
    "title": "WebKitGTK: Mehrere Schwachstellen erm\u00f6glichen Codeausf\u00fchrung und DoS",
    "tracking": {
      "current_release_date": "2025-12-23T23:00:00.000+00:00",
      "generator": {
        "date": "2025-12-24T08:50:09.441+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.5.0"
        }
      },
      "id": "WID-SEC-W-2025-2891",
      "initial_release_date": "2025-12-18T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-12-18T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-12-23T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source WebKitGTK",
            "product": {
              "name": "Open Source WebKitGTK",
              "product_id": "T049040",
              "product_identification_helper": {
                "cpe": "cpe:/a:webkitgtk:webkitgtk:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "T033647",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43501",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43501"
    },
    {
      "cve": "CVE-2025-43529",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43529"
    },
    {
      "cve": "CVE-2025-43531",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43531"
    },
    {
      "cve": "CVE-2025-43535",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43535"
    },
    {
      "cve": "CVE-2025-43536",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43536"
    },
    {
      "cve": "CVE-2025-43541",
      "product_status": {
        "known_affected": [
          "T049040",
          "67646",
          "T033647",
          "T004914",
          "T032255"
        ]
      },
      "release_date": "2025-12-18T23:00:00.000+00:00",
      "title": "CVE-2025-43541"
    }
  ]
}

GHSA-VF3C-QW39-5VQW

Vulnerability from github – Published: 2025-12-17 21:30 – Updated: 2025-12-17 21:30

Details

Severity ?

4.3 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-43501"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-12-17T21:16:09Z",
    "severity": "MODERATE"
  },
  "details": "A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash.",
  "id": "GHSA-vf3c-qw39-5vqw",
  "modified": "2025-12-17T21:30:49Z",
  "published": "2025-12-17T21:30:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-43501"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/125884"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/125885"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/125886"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/125891"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/125892"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-43501 (GCVE-0-2025-43501)

Solutions

Tags

Sightings

Nomenclature