Fluid Attacks Database

Description

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.1, iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1, macOS Tahoe 26.1, tvOS 26.1, visionOS 26.1. Processing maliciously crafted web content may lead to an unexpected process crash.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel9.6	webkit2gtk3	<0:2.50.3-1.el9_6	0:2.50.3-1.el9_6
rpm rhel8	webkit2gtk3	<0:2.50.3-1.el8_10	0:2.50.3-1.el8_10
debian 12	webkit2gtk	=2.40.1-1 \|\| =2.40.2-1 \|\| =2.40.2-1~deb11u1 \|\| =2.40.2-1~deb12u1 \|\| =2.40.3-1 \|\| =2.40.3-2 \|\| =2.40.3-2~deb11u1 \|\| =2.40.3-2~deb11u2 \|\| =2.40.3-2~deb12u1 \|\| =2.40.3-2~deb12u2 \|\| =2.40.4-1 \|\| =2.40.5-1 \|\| =2.40.5-1~deb11u1 \|\| =2.40.5-1~deb12u1 \|\| =2.41.4-1 \|\| =2.41.5-1 \|\| =2.41.6-1 \|\| =2.41.90-1 \|\| =2.41.91-1 \|\| =2.41.91-2 \|\| =2.41.92-1 \|\| =2.42.0-1 \|\| =2.42.0-1~bpo12+1 \|\| =2.42.1-1 \|\| =2.42.1-1~bpo12+1 \|\| =2.42.1-1~deb11u1 \|\| =2.42.1-1~deb11u2 \|\| =2.42.1-1~deb12u1 \|\| =2.42.1-2 \|\| =2.42.2-1 \|\| =2.42.2-1~deb11u1 \|\| =2.42.2-1~deb12u1 \|\| =2.42.3-1 \|\| =2.42.3-1~deb11u1 \|\| =2.42.3-1~deb12u1 \|\| =2.42.4-1 \|\| =2.42.4-1~deb11u1 \|\| =2.42.4-1~deb12u1 \|\| =2.42.5-1 \|\| =2.42.5-1~deb11u1 \|\| =2.42.5-1~deb12u1 \|\| =2.42.5-2 \|\| =2.43.1-1 \|\| =2.43.2-1 \|\| =2.43.3-1 \|\| =2.43.4-1 \|\| =2.43.4-2 \|\| =2.44.0-1 \|\| =2.44.0-2 \|\| =2.44.1-1 \|\| =2.44.1-1~deb11u1 \|\| =2.44.1-1~deb12u1 \|\| =2.44.2-1 \|\| =2.44.2-1~deb11u1 \|\| =2.44.2-1~deb12u1 \|\| =2.44.3-1 \|\| =2.44.3-1~deb11u1 \|\| =2.44.3-1~deb12u1 \|\| =2.44.4-1 \|\| =2.45.1-1 \|\| =2.45.1-2 \|\| =2.45.2-1 \|\| =2.45.3-1 \|\| =2.45.4-1 \|\| =2.45.5-1 \|\| =2.45.6-1 \|\| =2.45.91-1 \|\| =2.45.92-1 \|\| =2.46.0-1 \|\| =2.46.0-2 \|\| =2.46.0-2~deb12u1 \|\| =2.46.1-1 \|\| =2.46.1-2 \|\| =2.46.1-2~bpo12+1 \|\| =2.46.2-1 \|\| =2.46.3-1 \|\| =2.46.3-1~deb11u1 \|\| =2.46.3-1~deb11u2 \|\| =2.46.3-1~deb12u1 \|\| =2.46.4-1 \|\| =2.46.4-1~deb11u1 \|\| =2.46.4-1~deb12u1 \|\| =2.46.5-1 \|\| =2.46.5-1+hurd.1 \|\| =2.46.5-1+hurd.2 \|\| =2.46.5-1~deb11u1 \|\| =2.46.5-1~deb12u1 \|\| =2.46.6-1 \|\| =2.46.6-1~deb11u1 \|\| =2.46.6-1~deb12u1 \|\| =2.47.1-1 \|\| =2.47.2-1 \|\| =2.47.3-1 \|\| =2.47.4-1 \|\| =2.47.90-1 \|\| =2.48.0-1 \|\| =2.48.0-1+alpha \|\| =2.48.0-1+hurd.1 \|\| =2.48.0-1+hurd.2 \|\| =2.48.0-1~deb12u1 \|\| =2.48.1-1 \|\| =2.48.1-2 \|\| =2.48.1-2~deb12u1 \|\| =2.48.1-3 \|\| =2.48.2-1 \|\| =2.48.3-1 \|\| =2.48.3-1~deb11u1 \|\| =2.48.3-1~deb12u1 \|\| =2.48.5-1 \|\| =2.48.5-1~deb11u1 \|\| =2.48.5-1~deb12u1 \|\| =2.48.5-1~deb13u1 \|\| =2.48.6-1 \|\| =2.49.90-1 \|\| =2.50.0-1 \|\| =2.50.0-2 \|\| =2.50.1-1 \|\| =2.50.1-1~deb11u1 \|\| =2.50.1-1~deb12u1 \|\| =2.50.1-1~deb13u1 \|\| =2.50.2-1~deb11u1 \|\| >=0 <2.50.2-1~deb12u1	2.50.2-1~deb12u1
debian 14	wpewebkit	=2.48.3-1 \|\| =2.48.5-1 \|\| =2.48.6-1 \|\| =2.48.6-2 \|\| =2.50.0-1 \|\| =2.50.0-2 \|\| =2.50.1-1 \|\| >=0 <2.50.2-1	2.50.2-1
rpm rhel8.4	webkit2gtk3	<0:2.50.3-2.el8_4	0:2.50.3-2.el8_4
rpm rhel9	webkit2gtk3	<0:2.50.3-1.el9_7	0:2.50.3-1.el9_7
rpm rhel9.4	webkit2gtk3	<0:2.50.3-1.el9_4	0:2.50.3-1.el9_4
rpm rhel6	webkitgtk	-	-
debian 11	webkit2gtk	=2.32.3-1 \|\| =2.32.4-1 \|\| =2.32.4-1~deb10u1 \|\| =2.32.4-1~deb11u1 \|\| =2.33.1-1 \|\| =2.33.2-1 \|\| =2.33.3-1 \|\| =2.33.90-1 \|\| =2.33.91-1 \|\| =2.34.0-1 \|\| =2.34.0-1~bpo11+1 \|\| =2.34.1-1 \|\| =2.34.1-1~deb10u1 \|\| =2.34.1-1~deb11u1 \|\| =2.34.2-1 \|\| =2.34.2-1~bpo11+1 \|\| =2.34.3-1 \|\| =2.34.3-1~deb10u1 \|\| =2.34.3-1~deb11u1 \|\| =2.34.4-1 \|\| =2.34.4-1~deb10u1 \|\| =2.34.4-1~deb11u1 \|\| =2.34.5-1 \|\| =2.34.6-1 \|\| =2.34.6-1~deb10u1 \|\| =2.34.6-1~deb11u1 \|\| =2.35.1-1 \|\| =2.35.2-1 \|\| =2.35.3-1 \|\| =2.35.90-1 \|\| =2.36.0-1 \|\| =2.36.0-2 \|\| =2.36.0-3 \|\| =2.36.0-3~deb10u1 \|\| =2.36.0-3~deb11u1 \|\| =2.36.1-1 \|\| =2.36.2-1 \|\| =2.36.3-1 \|\| =2.36.3-1~deb10u1 \|\| =2.36.3-1~deb11u1 \|\| =2.36.4-1 \|\| =2.36.4-1~deb10u1 \|\| =2.36.4-1~deb11u1 \|\| =2.36.6-1 \|\| =2.36.6-1~deb10u1 \|\| =2.36.6-1~deb11u1 \|\| =2.36.7-1 \|\| =2.36.7-1~deb10u1 \|\| =2.36.7-1~deb11u1 \|\| =2.37.1-1 \|\| =2.37.1-2 \|\| =2.37.90-1 \|\| =2.37.91-1 \|\| =2.38.0-1 \|\| =2.38.0-1~deb10u1 \|\| =2.38.0-1~deb11u1 \|\| =2.38.0-2 \|\| =2.38.0-3 \|\| =2.38.1-1 \|\| =2.38.2-1 \|\| =2.38.2-1~deb10u1 \|\| =2.38.2-1~deb11u1 \|\| =2.38.3-1 \|\| =2.38.3-1~deb10u1 \|\| =2.38.3-1~deb11u1 \|\| =2.38.4-1 \|\| =2.38.4-2 \|\| =2.38.4-2~deb10u1 \|\| =2.38.4-2~deb11u1 \|\| =2.38.5-1 \|\| =2.38.5-1+m68k \|\| =2.38.5-1~deb10u1 \|\| =2.38.5-1~deb11u1 \|\| =2.39.1-1 \|\| =2.39.2-1 \|\| =2.39.3-1 \|\| =2.39.4-1 \|\| =2.39.5-1 \|\| =2.39.7-1 \|\| =2.39.90-1 \|\| =2.39.91-1 \|\| =2.40.0-1 \|\| =2.40.0-2 \|\| =2.40.0-3 \|\| =2.40.1-1 \|\| =2.40.1-1~deb11u1 \|\| =2.40.2-1 \|\| =2.40.2-1~deb11u1 \|\| =2.40.2-1~deb12u1 \|\| =2.40.3-1 \|\| =2.40.3-2 \|\| =2.40.3-2~deb11u1 \|\| =2.40.3-2~deb11u2 \|\| =2.40.3-2~deb12u1 \|\| =2.40.3-2~deb12u2 \|\| =2.40.4-1 \|\| =2.40.5-1 \|\| =2.40.5-1~deb11u1 \|\| =2.40.5-1~deb12u1 \|\| =2.41.4-1 \|\| =2.41.5-1 \|\| =2.41.6-1 \|\| =2.41.90-1 \|\| =2.41.91-1 \|\| =2.41.91-2 \|\| =2.41.92-1 \|\| =2.42.0-1 \|\| =2.42.0-1~bpo12+1 \|\| =2.42.1-1 \|\| =2.42.1-1~bpo12+1 \|\| =2.42.1-1~deb11u1 \|\| =2.42.1-1~deb11u2 \|\| =2.42.1-1~deb12u1 \|\| =2.42.1-2 \|\| =2.42.2-1 \|\| =2.42.2-1~deb11u1 \|\| =2.42.2-1~deb12u1 \|\| =2.42.3-1 \|\| =2.42.3-1~deb11u1 \|\| =2.42.3-1~deb12u1 \|\| =2.42.4-1 \|\| =2.42.4-1~deb11u1 \|\| =2.42.4-1~deb12u1 \|\| =2.42.5-1 \|\| =2.42.5-1~deb11u1 \|\| =2.42.5-1~deb12u1 \|\| =2.42.5-2 \|\| =2.43.1-1 \|\| =2.43.2-1 \|\| =2.43.3-1 \|\| =2.43.4-1 \|\| =2.43.4-2 \|\| =2.44.0-1 \|\| =2.44.0-2 \|\| =2.44.1-1 \|\| =2.44.1-1~deb11u1 \|\| =2.44.1-1~deb12u1 \|\| =2.44.2-1 \|\| =2.44.2-1~deb11u1 \|\| =2.44.2-1~deb12u1 \|\| =2.44.3-1 \|\| =2.44.3-1~deb11u1 \|\| =2.44.3-1~deb12u1 \|\| =2.44.4-1 \|\| =2.45.1-1 \|\| =2.45.1-2 \|\| =2.45.2-1 \|\| =2.45.3-1 \|\| =2.45.4-1 \|\| =2.45.5-1 \|\| =2.45.6-1 \|\| =2.45.91-1 \|\| =2.45.92-1 \|\| =2.46.0-1 \|\| =2.46.0-2 \|\| =2.46.0-2~deb12u1 \|\| =2.46.1-1 \|\| =2.46.1-2 \|\| =2.46.1-2~bpo12+1 \|\| =2.46.2-1 \|\| =2.46.3-1 \|\| =2.46.3-1~deb11u1 \|\| =2.46.3-1~deb11u2 \|\| =2.46.3-1~deb12u1 \|\| =2.46.4-1 \|\| =2.46.4-1~deb11u1 \|\| =2.46.4-1~deb12u1 \|\| =2.46.5-1 \|\| =2.46.5-1+hurd.1 \|\| =2.46.5-1+hurd.2 \|\| =2.46.5-1~deb11u1 \|\| =2.46.5-1~deb12u1 \|\| =2.46.6-1 \|\| =2.46.6-1~deb11u1 \|\| =2.46.6-1~deb12u1 \|\| =2.47.1-1 \|\| =2.47.2-1 \|\| =2.47.3-1 \|\| =2.47.4-1 \|\| =2.47.90-1 \|\| =2.48.0-1 \|\| =2.48.0-1+alpha \|\| =2.48.0-1+hurd.1 \|\| =2.48.0-1+hurd.2 \|\| =2.48.0-1~deb12u1 \|\| =2.48.1-1 \|\| =2.48.1-2 \|\| =2.48.1-2~deb12u1 \|\| =2.48.1-3 \|\| =2.48.2-1 \|\| =2.48.3-1 \|\| =2.48.3-1~deb11u1 \|\| =2.48.3-1~deb12u1 \|\| =2.48.5-1 \|\| =2.48.5-1~deb11u1 \|\| =2.48.5-1~deb12u1 \|\| =2.48.5-1~deb13u1 \|\| =2.48.6-1 \|\| =2.49.90-1 \|\| =2.50.0-1 \|\| =2.50.0-2 \|\| =2.50.1-1 \|\| =2.50.1-1~deb11u1 \|\| =2.50.1-1~deb12u1 \|\| =2.50.1-1~deb13u1 \|\| =2.50.2-1~deb11u1 \|\| =2.50.2-1~deb12u1 \|\| =2.50.2-1~deb13u1 \|\| >=0 <2.50.2-1	2.50.2-1
debian 13	webkit2gtk	=2.48.3-1 \|\| =2.48.5-1 \|\| =2.48.5-1~deb11u1 \|\| =2.48.5-1~deb12u1 \|\| =2.48.5-1~deb13u1 \|\| =2.48.6-1 \|\| =2.49.90-1 \|\| =2.50.0-1 \|\| =2.50.0-2 \|\| =2.50.1-1 \|\| =2.50.1-1~deb11u1 \|\| =2.50.1-1~deb12u1 \|\| =2.50.1-1~deb13u1 \|\| =2.50.2-1~deb11u1 \|\| =2.50.2-1~deb12u1 \|\| >=0 <2.50.2-1~deb13u1	2.50.2-1~deb13u1

1-10 of 14

Aliases

1. CVE-2025-434412. NVD-2025-434413. OSV-2025-434414. OSV-DEBIAN-2025-434415. SECURITY-TRACKER-CVE-2025-43441

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.