Main Vulnerability Database SB2026010595

SB2026010595 - SUSE update for webkit2gtk3

Published: January 5, 2026 Updated: February 6, 2026

Security Bulletin ID SB2026010595

Severity

Critical

Patch available

YES

Number of vulnerabilities 25

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 25 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2023-43000)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and execute arbitrary code on the system.

Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.

2) Buffer overflow (CVE-ID: CVE-2025-13502)

The vulnerability allows a remote attacker to crash the browser.

The vulnerability exists due to a boundary error when HTML content in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and crash the browser.

3) Information disclosure (CVE-ID: CVE-2025-13947)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and exfiltrate system information.

4) Out-of-bounds write (CVE-ID: CVE-2025-14174)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error in ANGLE. A remote attacker can trick the victim into visiting a specially crafted website, trigger an out-of-bounds write and execute arbitrary code on the target system.

Note, the vulnerability is being actively exploited in the wild.

5) Improper access control (CVE-ID: CVE-2025-43392)

The vulnerability allows a remote attacker to gain unauthorized access to sensitive information.

The vulnerability exists due to incorrect handling of cached data in WebKit Canvas. A remote attacker can trick the victim into visiting a specially crafted website and exfiltrate data cross-origin.

6) Buffer overflow (CVE-ID: CVE-2025-43419)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

7) Buffer overflow (CVE-ID: CVE-2025-43421)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and crash the browser.

8) Buffer overflow (CVE-ID: CVE-2025-43425)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and crash the browser.

9) State issues (CVE-ID: CVE-2025-43427)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a state management issue in WebKit. A remote attacker can trick the victim into opening a specially crafted file and perform an unexpected process crash.

10) Buffer overflow (CVE-ID: CVE-2025-43429)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and crash the browser.

11) Input validation error (CVE-ID: CVE-2025-43430)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in WebKit. A remote attacker can trick the victim into opening a specially crafted web page and crash the browser.

12) Buffer overflow (CVE-ID: CVE-2025-43431)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website. trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

13) Use-after-free (CVE-ID: CVE-2025-43432)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a use-after-free error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and crash the browser.

14) Use after free (CVE-ID: CVE-2025-43434)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error in WebKit. A remote attacker can trick the victim into opening a specially crafted file and perform an unexpected Safari crash.

15) Input validation error (CVE-ID: CVE-2025-43440)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in WebKit. A remote attacker can trick the victim into visiting a specially crafted web page and crash the browser.

16) Input validation error (CVE-ID: CVE-2025-43443)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in WebKit. A remote attacker can trick the victim into visiting a specially crafted web page and crash the browser.

17) Input validation error (CVE-ID: CVE-2025-43458)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in WebKit. A remote attacker can trick the victim into opening a specially crafted web page and crash the browser.

18) Security features bypass (CVE-ID: CVE-2025-43480)

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to improperly imposed security restrictions in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and exfiltrate data cross-origin.

19) Buffer overflow (CVE-ID: CVE-2025-43501)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a boundary error when processing HTML content in WebKit. A remote attacker can trick the victim into visiting a specially crafted website, trigger memory corruption and perform a denial of service attack.

20) Use-after-free (CVE-ID: CVE-2025-43529)

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a use-after-free error when processing HTML content. A remote attacker can trick the victim into visiting a specially crafted website, trigger a use-after-free error and execute arbitrary code on the system.

Note, the vulnerability is being actively exploited in the wild.

21) Race condition (CVE-ID: CVE-2025-43531)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a race condition in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and perform a denial of service attack.

22) Buffer overflow (CVE-ID: CVE-2025-43535)

The vulnerability allows a remote attacker to perform a denial of service attack.

23) Use-after-free (CVE-ID: CVE-2025-43536)

The vulnerability allows a remote attacker to perform a denial of service attack.

24) Type confusion (CVE-ID: CVE-2025-43541)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a type confusion error in WebKit. A remote attacker can trick the victim into visiting a specially crafted website and cause Safari to crash.

25) Buffer overflow (CVE-ID: CVE-2025-66287)

The vulnerability allows a remote attacker to crash the browser.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2026/suse-su-20260021-1/

Vulnerable Software

SUSE Linux Enterprise Server 15 SP6: LTSS
Basesystem Module: 15-SP6 - 15-SP7
Desktop Applications Module: 15-SP6 - 15-SP7
Development Tools Module: 15-SP6 - 15-SP7
SUSE Linux Enterprise Real Time 15: SP6 - SP7
SUSE Linux Enterprise Server for SAP Applications 15: SP6 - SP7
SUSE Linux Enterprise Server 15: SP6 - SP7
SUSE Linux Enterprise Desktop 15: SP6 - SP7
openSUSE Leap: 15.6
libwebkit2gtk-4_0-37-64bit-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0-64bit-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18-64bit: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18-64bit-debuginfo: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0-64bit: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_0-37-64bit: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0-64bit: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0-64bit-debuginfo: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0-32bit-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0-32bit-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18-32bit-debuginfo: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0-32bit: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_0-37-32bit: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0-32bit: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_0-37-32bit-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18-32bit: before 2.50.4-150600.12.54.1
webkit2gtk3-minibrowser: before 2.50.4-150600.12.54.1
webkit2gtk4-minibrowser-debuginfo: before 2.50.4-150600.12.54.1
webkit2gtk3-soup2-minibrowser-debuginfo: before 2.50.4-150600.12.54.1
webkit-jsc-6.0-debuginfo: before 2.50.4-150600.12.54.1
webkit-jsc-4: before 2.50.4-150600.12.54.1
webkit-jsc-4-debuginfo: before 2.50.4-150600.12.54.1
webkit-jsc-4.1: before 2.50.4-150600.12.54.1
webkit-jsc-4.1-debuginfo: before 2.50.4-150600.12.54.1
webkit2gtk4-minibrowser: before 2.50.4-150600.12.54.1
webkit2gtk3-minibrowser-debuginfo: before 2.50.4-150600.12.54.1
webkit-jsc-6.0: before 2.50.4-150600.12.54.1
webkit2gtk3-soup2-minibrowser: before 2.50.4-150600.12.54.1
typelib-1_0-WebKit2-4_1: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-6_0-1: before 2.50.4-150600.12.54.1
webkitgtk-6_0-injected-bundles-debuginfo: before 2.50.4-150600.12.54.1
typelib-1_0-WebKit2WebExtension-4_0: before 2.50.4-150600.12.54.1
webkitgtk-6_0-injected-bundles: before 2.50.4-150600.12.54.1
typelib-1_0-WebKit2WebExtension-4_1: before 2.50.4-150600.12.54.1
webkit2gtk-4_1-injected-bundles-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18: before 2.50.4-150600.12.54.1
webkit2gtk3-soup2-devel: before 2.50.4-150600.12.54.1
webkit2gtk-4_0-injected-bundles-debuginfo: before 2.50.4-150600.12.54.1
webkit2gtk3-debugsource: before 2.50.4-150600.12.54.1
typelib-1_0-JavaScriptCore-4_0: before 2.50.4-150600.12.54.1
libwebkitgtk-6_0-4-debuginfo: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-6_0-1-debuginfo: before 2.50.4-150600.12.54.1
typelib-1_0-WebKit2-4_0: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0: before 2.50.4-150600.12.54.1
libwebkitgtk-6_0-4: before 2.50.4-150600.12.54.1
typelib-1_0-JavaScriptCore-4_1: before 2.50.4-150600.12.54.1
webkit2gtk3-devel: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_0-37: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_1-0: before 2.50.4-150600.12.54.1
webkit2gtk3-soup2-debugsource: before 2.50.4-150600.12.54.1
webkit2gtk-4_1-injected-bundles: before 2.50.4-150600.12.54.1
webkit2gtk-4_0-injected-bundles: before 2.50.4-150600.12.54.1
libjavascriptcoregtk-4_0-18-debuginfo: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_0-37-debuginfo: before 2.50.4-150600.12.54.1
libwebkit2gtk-4_1-0-debuginfo: before 2.50.4-150600.12.54.1
WebKitGTK-4.1-lang: before 2.50.4-150600.12.54.1
WebKitGTK-6.0-lang: before 2.50.4-150600.12.54.1
WebKitGTK-4.0-lang: before 2.50.4-150600.12.54.1
webkit2gtk4-devel: before 2.50.4-150600.12.54.1
typelib-1_0-WebKit-6_0: before 2.50.4-150600.12.54.1
typelib-1_0-WebKitWebProcessExtension-6_0: before 2.50.4-150600.12.54.1
typelib-1_0-JavaScriptCore-6_0: before 2.50.4-150600.12.54.1
webkit2gtk4-debugsource: before 2.50.4-150600.12.54.1

SB2026010595 - SUSE update for webkit2gtk3

Breakdown by Severity

Description

Remediation

References

Please verify you're human