Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
8.8

Google Chrome and Firefox may crash or leak memory on Linux

RHSA-2025:17741
Summary

An update is available for the webkit2gtk3 library, which is used by Google Chrome and Firefox on Linux. If not updated, these browsers may crash or leak sensitive information. Update your Linux system and web browsers to a version that includes this fix.

What to do
  • Update redhat webkit2gtk3 to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-debuginfo to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-debugsource to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-devel to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-devel-debuginfo to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-jsc to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-jsc-debuginfo to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-jsc-devel to version 0:2.50.0-2.el9_4.
  • Update redhat webkit2gtk3-jsc-devel-debuginfo to version 0:2.50.0-2.el9_4.
Affected software
Ecosystem VendorProductAffected versions
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3 < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-debuginfo < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-debugsource < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-devel < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-devel-debuginfo < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-jsc < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-jsc-debuginfo < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-jsc-devel < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Red Hat:rhel_eus:9.4::appstream redhat webkit2gtk3-jsc-devel-debuginfo < 0:2.50.0-2.el9_4
Fix: upgrade to 0:2.50.0-2.el9_4
Original title
Red Hat Security Advisory: webkit2gtk3 security update
osv CVSS3.1 8.8
Published: 13 Oct 2025 · Updated: 21 Mar 2026 · First seen: 21 Mar 2026