Security update for webkit2gtk3 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:4528-1 Final 1 1 2025-12-26T14:52:35Z current 2025-12-26T14:52:35Z 2025-12-26T14:52:35Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for webkit2gtk3 This update for webkit2gtk3 fixes the following issues: Update to version 2.50.4. Security issues fixed: - CVE-2025-14174: processing maliciously crafted web content may lead to memory corruption due to improper validation (bsc#1255497). - CVE-2025-43501: processing maliciously crafted web content may lead to an unexpected process crash due to a buffer overflow issue (bsc#1255194). - CVE-2025-43529: processing maliciously crafted web content may lead to arbitrary code execution due to a use-after-free issue (bsc#1255198). - CVE-2025-43531: processing maliciously crafted web content may lead to an unexpected process crash due to a race condition (bsc#1255183). - CVE-2025-43535: processing maliciously crafted web content may lead to an unexpected process crash due to improper memory handling (bsc#1255195). - CVE-2025-43536: processing maliciously crafted web content may lead to an unexpected process crash due to a use-after-free issue (bsc#1255200). - CVE-2025-43541: processing maliciously crafted web content may lead to an unexpected process crash due to type confusion (bsc#1255191). Other updates and bugfixes: - Correctly handle the program name passed to the sleep disabler. - Ensure GStreamer is initialized before using the Quirks. - Fix several crashes and rendering issues. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-4528,SUSE-SLE-SERVER-12-SP5-LTSS-2025-4528,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-4528 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ Link for SUSE-SU-2025:4528-1 https://lists.suse.com/pipermail/sle-security-updates/2025-December/023654.html E-Mail link for SUSE-SU-2025:4528-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1255183 SUSE Bug 1255183 https://bugzilla.suse.com/1255191 SUSE Bug 1255191 https://bugzilla.suse.com/1255194 SUSE Bug 1255194 https://bugzilla.suse.com/1255195 SUSE Bug 1255195 https://bugzilla.suse.com/1255198 SUSE Bug 1255198 https://bugzilla.suse.com/1255200 SUSE Bug 1255200 https://bugzilla.suse.com/1255497 SUSE Bug 1255497 https://www.suse.com/security/cve/CVE-2025-14174/ SUSE CVE CVE-2025-14174 page https://www.suse.com/security/cve/CVE-2025-43501/ SUSE CVE CVE-2025-43501 page https://www.suse.com/security/cve/CVE-2025-43529/ SUSE CVE CVE-2025-43529 page https://www.suse.com/security/cve/CVE-2025-43531/ SUSE CVE CVE-2025-43531 page https://www.suse.com/security/cve/CVE-2025-43535/ SUSE CVE CVE-2025-43535 page https://www.suse.com/security/cve/CVE-2025-43536/ SUSE CVE CVE-2025-43536 page https://www.suse.com/security/cve/CVE-2025-43541/ SUSE CVE CVE-2025-43541 page SUSE Linux Enterprise Server 12 SP5-LTSS SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 libjavascriptcoregtk-4_0-18-32bit-2.50.4-4.51.1 libjavascriptcoregtk-4_0-18-64bit-2.50.4-4.51.1 libwebkit2gtk-4_0-37-2.50.4-4.51.1 libwebkit2gtk-4_0-37-32bit-2.50.4-4.51.1 libwebkit2gtk-4_0-37-64bit-2.50.4-4.51.1 libwebkit2gtk3-lang-2.50.4-4.51.1 typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 webkit-jsc-4-2.50.4-4.51.1 webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 webkit2gtk3-devel-2.50.4-4.51.1 webkit2gtk3-minibrowser-2.50.4-4.51.1 libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libwebkit2gtk-4_0-37-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libwebkit2gtk3-lang-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS webkit2gtk3-devel-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server 12 SP5-LTSS libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libwebkit2gtk-4_0-37-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 libwebkit2gtk3-lang-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 webkit2gtk3-devel-2.50.4-4.51.1 as a component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) CVE-2025-14174 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-14174.html CVE-2025-14174 https://bugzilla.suse.com/1254776 SUSE Bug 1254776 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash. CVE-2025-43501 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43501.html CVE-2025-43501 https://bugzilla.suse.com/1255194 SUSE Bug 1255194 A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 26.2, Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, tvOS 26.2. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals on versions of iOS before iOS 26. CVE-2025-14174 was also issued in response to this report. CVE-2025-43529 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43529.html CVE-2025-43529 https://bugzilla.suse.com/1255198 SUSE Bug 1255198 A race condition was addressed with improved state handling. This issue is fixed in watchOS 26.2, Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2, tvOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash. CVE-2025-43531 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43531.html CVE-2025-43531 https://bugzilla.suse.com/1255183 SUSE Bug 1255183 The issue was addressed with improved memory handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected process crash. CVE-2025-43535 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43535.html CVE-2025-43535 https://bugzilla.suse.com/1255195 SUSE Bug 1255195 A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Tahoe 26.2, iOS 26.2 and iPadOS 26.2, Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3. Processing maliciously crafted web content may lead to an unexpected process crash. CVE-2025-43536 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43536.html CVE-2025-43536 https://bugzilla.suse.com/1255200 SUSE Bug 1255200 A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 26.2, iOS 18.7.3 and iPadOS 18.7.3, iOS 26.2 and iPadOS 26.2, macOS Tahoe 26.2, visionOS 26.2. Processing maliciously crafted web content may lead to an unexpected Safari crash. CVE-2025-43541 SUSE Linux Enterprise Server 12 SP5-LTSS:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server 12 SP5-LTSS:webkit2gtk3-devel-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libjavascriptcoregtk-4_0-18-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk-4_0-37-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libwebkit2gtk3-lang-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-JavaScriptCore-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:typelib-1_0-WebKit2WebExtension-4_0-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk-4_0-injected-bundles-2.50.4-4.51.1 SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:webkit2gtk3-devel-2.50.4-4.51.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254528-1/ https://www.suse.com/security/cve/CVE-2025-43541.html CVE-2025-43541 https://bugzilla.suse.com/1255191 SUSE Bug 1255191