[Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2025-0007
Alberto Garcia (@berto)
berto at debian.org
Mon Oct 13 23:21:40 BST 2025
Alberto Garcia pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83a55f16 by Alberto Garcia at 2025-10-14T00:21:09+02:00
webkit2gtk / wpewebkit upstream advisory WSA-2025-0007
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10955,6 +10955,7 @@ CVE-2025-43369 (This issue was addressed with improved handling of symlinks. Thi
CVE-2025-43368 (A use-after-free issue was addressed with improved memory management. ...)
- webkit2gtk 2.50.0-1
- wpewebkit 2.50.0-1
+ [trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
[bullseye] - wpewebkit <end-of-life> (see #1035997)
NOTE: https://webkitgtk.org/security/WSA-2025-0006.html
@@ -10973,6 +10974,7 @@ CVE-2025-43357 (This issue was addressed with improved redaction of sensitive in
CVE-2025-43356 (The issue was addressed with improved handling of caches. This issue i ...)
- webkit2gtk 2.50.0-1
- wpewebkit 2.50.0-1
+ [trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
[bullseye] - wpewebkit <end-of-life> (see #1035997)
NOTE: https://webkitgtk.org/security/WSA-2025-0006.html
@@ -10991,10 +10993,16 @@ CVE-2025-43346 (An out-of-bounds access issue was addressed with improved bounds
CVE-2025-43344 (An out-of-bounds access issue was addressed with improved bounds check ...)
NOT-FOR-US: Apple
CVE-2025-43343 (The issue was addressed with improved memory handling. This issue is f ...)
- NOT-FOR-US: Apple
+ - webkit2gtk 2.50.1-1
+ - wpewebkit 2.50.1-1
+ [trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
+ [bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
+ [bullseye] - wpewebkit <end-of-life> (see #1035997)
+ NOTE: https://webkitgtk.org/security/WSA-2025-0007.html
CVE-2025-43342 (A correctness issue was addressed with improved checks. This issue is ...)
- webkit2gtk 2.50.0-1
- wpewebkit 2.50.0-1
+ [trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
[bullseye] - wpewebkit <end-of-life> (see #1035997)
NOTE: https://webkitgtk.org/security/WSA-2025-0006.html
@@ -11085,6 +11093,7 @@ CVE-2025-43279 (A privacy issue was addressed with improved private data redacti
CVE-2025-43272 (The issue was addressed with improved memory handling. This issue is f ...)
- webkit2gtk 2.50.0-1
- wpewebkit 2.50.0-1
+ [trixie] - wpewebkit <ignored> (wpewebkit not covered by security support in Trixie)
[bookworm] - wpewebkit <ignored> (wpewebkit not covered by security support in Bookworm)
[bullseye] - wpewebkit <end-of-life> (see #1035997)
NOTE: https://webkitgtk.org/security/WSA-2025-0006.html
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83a55f167dfb4d5b92e5840ce9b0789b858ad264
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83a55f167dfb4d5b92e5840ce9b0789b858ad264
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251013/e24e84cb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list