Red Hat Security Advisory: webkit2gtk3 security update
Multiple vulnerabilities have been identified in WebKitGTK, the GTK port of the WebKit web rendering engine, affecting Red Hat Enterprise Linux 8. 6 variants. These issues include crashes, denial-of-service, information disclosure, bypass of security policies such as Same Origin Policy and Content Security Policy, user tracking, fingerprinting, and cross-site scripting attacks triggered by processing maliciously crafted web content or websites. The vulnerabilities are collectively rated as having an important security impact by Red Hat Product Security. A security update addressing these issues is available for affected Red Hat Enterprise Linux versions.
AI Analysis
Technical Summary
This advisory covers a set of 18 security vulnerabilities in WebKitGTK, the GTK platform port of the WebKit engine, affecting Red Hat Enterprise Linux 8.6 variants. The vulnerabilities include multiple instances where processing maliciously crafted web content can cause unexpected crashes (including Safari crashes), denial-of-service conditions, information disclosure of internal application states, bypass of Same Origin Policy and Content Security Policy, user tracking via Safari web extensions, user fingerprinting, sandbox escape to process restricted content, and cross-site scripting attacks. These issues are tracked under CVE identifiers ranging from CVE-2025-43213 to CVE-2026-28871. Red Hat has issued an important security update (RHSA-2026:13845) to address these vulnerabilities. The update is available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Update Services for SAP Solutions, and Telecommunications Update Service. The advisory references detailed CVE pages for individual vulnerability impact and scoring.
Potential Impact
The vulnerabilities may allow remote attackers to cause application or process crashes, leading to denial-of-service conditions. Some vulnerabilities enable information disclosure of internal application states, bypassing of critical web security policies (Same Origin Policy and Content Security Policy), user tracking and fingerprinting, processing of restricted content outside sandbox protections, and cross-site scripting attacks. These impacts can degrade the security posture of affected systems by undermining web content isolation, user privacy, and application stability. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released an official security update (RHSA-2026:13845) that addresses all listed vulnerabilities in WebKitGTK for affected Red Hat Enterprise Linux 8.6 variants. Users and administrators should apply this update promptly following the guidance at https://access.redhat.com/articles/11258 to remediate these issues. No additional mitigation steps are indicated beyond applying the official patch. Patch status is confirmed as fixed by Red Hat Product Security.
Red Hat Security Advisory: webkit2gtk3 security update
Description
Multiple vulnerabilities have been identified in WebKitGTK, the GTK port of the WebKit web rendering engine, affecting Red Hat Enterprise Linux 8. 6 variants. These issues include crashes, denial-of-service, information disclosure, bypass of security policies such as Same Origin Policy and Content Security Policy, user tracking, fingerprinting, and cross-site scripting attacks triggered by processing maliciously crafted web content or websites. The vulnerabilities are collectively rated as having an important security impact by Red Hat Product Security. A security update addressing these issues is available for affected Red Hat Enterprise Linux versions.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers a set of 18 security vulnerabilities in WebKitGTK, the GTK platform port of the WebKit engine, affecting Red Hat Enterprise Linux 8.6 variants. The vulnerabilities include multiple instances where processing maliciously crafted web content can cause unexpected crashes (including Safari crashes), denial-of-service conditions, information disclosure of internal application states, bypass of Same Origin Policy and Content Security Policy, user tracking via Safari web extensions, user fingerprinting, sandbox escape to process restricted content, and cross-site scripting attacks. These issues are tracked under CVE identifiers ranging from CVE-2025-43213 to CVE-2026-28871. Red Hat has issued an important security update (RHSA-2026:13845) to address these vulnerabilities. The update is available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Update Services for SAP Solutions, and Telecommunications Update Service. The advisory references detailed CVE pages for individual vulnerability impact and scoring.
Potential Impact
The vulnerabilities may allow remote attackers to cause application or process crashes, leading to denial-of-service conditions. Some vulnerabilities enable information disclosure of internal application states, bypassing of critical web security policies (Same Origin Policy and Content Security Policy), user tracking and fingerprinting, processing of restricted content outside sandbox protections, and cross-site scripting attacks. These impacts can degrade the security posture of affected systems by undermining web content isolation, user privacy, and application stability. No known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released an official security update (RHSA-2026:13845) that addresses all listed vulnerabilities in WebKitGTK for affected Red Hat Enterprise Linux 8.6 variants. Users and administrators should apply this update promptly following the guidance at https://access.redhat.com/articles/11258 to remediate these issues. No additional mitigation steps are indicated beyond applying the official patch. Patch status is confirmed as fixed by Red Hat Product Security.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:13845
- Cve Count
- 18
- Additional Cves
- ["CVE-2025-43214","CVE-2025-43457","CVE-2025-43511","CVE-2025-46299","CVE-2026-20608","CVE-2026-20635","CVE-2026-20636","CVE-2026-20643","CVE-2026-20644","CVE-2026-20652","CVE-2026-20664","CVE-2026-20665","CVE-2026-20676","CVE-2026-20691","CVE-2026-28857","CVE-2026-28859","CVE-2026-28871"]
- Cvss Version
- null
Threat ID: 6a1df668e29bf47b504611be
Added to database: 6/1/2026, 9:15:20 PM
Last enriched: 6/1/2026, 9:17:37 PM
Last updated: 6/2/2026, 7:27:49 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.