English
EN
Français
FR
Language
English
EN
Français
FR

CVE Vulnerabilities

Posts & Pages

No results found for ""

Try different keywords or check spelling

Search in CVE database, posts & pages • Press ESC to close

RHSA-2025:23700 Important

RHSA-2025:23700: webkitgtk: Processing maliciously crafted web content may lead to an unexpected process crash

Red Hat Released: December 17, 2025 Updated: December 22, 2025 Restart Required
Official Page

Description

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash. A flaw was found in WebKitGTK. Processing malicious web content can cause a buffer overflow due to improper memory handling and result in an unexpected process crash.

Fixed Vulnerabilities 5

CVE-2025-43531 N/A 0.0 ⚠️ KEV fixed
Dec 17, 2025

A race condition was addressed with improved state handling. This issue is fixed in watchOS 26.2, Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2…

CVE-2025-43501 N/A 0.0 ⚠️ KEV fixed
Dec 17, 2025

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and…

CVE-2025-43536 N/A 0.0 ⚠️ KEV fixed
Dec 17, 2025

A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, Safari 26.2, iOS…

CVE-2025-43541 N/A 0.0 ⚠️ KEV fixed
Dec 17, 2025

A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and…

CVE-2025-43535 N/A 0.0 ⚠️ KEV fixed
Dec 17, 2025

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2,…

Quick Info

Patch ID: RHSA-2025:23700
Vendor: Red Hat
Severity: Important
CVEs Fixed: 5
Restart: Required

Vendor

Red Hat

Additional Info

cwe: CWE-120
type: Security Advisory
rhsa id: RHSA-2025:23700
cvss score: 8.8
mitigation: Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.
cvss vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
rhsa number: 2025:23700

Share