vulnerability

Red Hat: CVE-2025-43529: webkitgtk: webkitgtk: Use-after-free due to improper memory management (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:M/Au:N/C:C/I:C/A:C)	Dec 16, 2025	Dec 22, 2025	Dec 29, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:C/A:C)

Published

Dec 16, 2025

Added

Dec 22, 2025

Modified

Dec 29, 2025

Description

A flaw was found in webkitgtk where when processing a maliciously crafted web content a use-after-free type of weaknesses may be triggered leading to a remote code execution in the client machine.

Solutions

redhat-upgrade-webkit2gtk3redhat-upgrade-webkit2gtk3-debuginforedhat-upgrade-webkit2gtk3-debugsourceredhat-upgrade-webkit2gtk3-develredhat-upgrade-webkit2gtk3-devel-debuginforedhat-upgrade-webkit2gtk3-jscredhat-upgrade-webkit2gtk3-jsc-debuginforedhat-upgrade-webkit2gtk3-jsc-develredhat-upgrade-webkit2gtk3-jsc-devel-debuginfo

References

CWE-416
NVD-CVE-2025-43529
REDHAT-RHSA-2025:23663
REDHAT-RHSA-2025:23700
REDHAT-RHSA-2025:23972
REDHAT-RHSA-2025:23974

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today