vulnerability

Debian: CVE-2025-43529: webkit2gtk -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Dec 19, 2025	Dec 19, 2025	Dec 22, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Dec 19, 2025

Added

Dec 19, 2025

Modified

Dec 22, 2025

Description

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 26.2, Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, tvOS 26.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-14174 was also issued in response to this report.

Solution

debian-upgrade-webkit2gtk

References

CVE-2025-43529
https://attackerkb.com/topics/CVE-2025-43529
CWE-416
DEBIAN-DLA-4414-1
DEBIAN-DSA-6083-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today