Astra Linux – Vulnerability in WebKit2GTK

A correctness issue was addressed through improved checks. This issue has been fixed in Safari 26, iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS 26, and watchOS 26. Processing maliciously crafted web content may result in an unexpected process crash...

CVE-2025-43295

A denial-of-service issue was addressed with improved validation. This issue is fixed in iOS 18.7 and iPadOS 18.7, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26. An app may be able to cause a denial-of-service...

CVE-2025-43299

A denial-of-service issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7 and iPadOS 18.7. An app may be able to cause a denial-of-service...

CVE-2025-43342

CVE-2025-43342 affects WebKitGTK/webkitgtk4 (WebKitGTK engine). The description and connected advisories indicate a correctness issue where processing maliciously crafted web content may cause an unexpected process crash. The vulnerability is tracked with a high severity (CVSSv3.1: 9.8, CRITICAL;...

CVE-2025-43346

CVE-2025-43346 is an out-of-bounds access vulnerability addressed by improved bounds checking. It affects Apple platforms as specified in the sources: tvOS 26, watchOS 26, iOS 26, iPadOS 26, visionOS 26, and iOS 18.7 / iPadOS 18.7. The underlying cause is insufficient boundary checking when proce...