CNNVD-202512-499 Information

Dec 04, 2025 cve

CNNVD ID

CNNVD-202512-499

CVE-2025-66287

  • CNNVD Published: 2025-12-04

Description (Chinese)

WebKitGTK是WebKitGTK公司的WebKit渲染引擎的全功能端口,适用于需要任何类型的Web集成的项目,包括混合HTML / CSS应用程序到成熟的Web浏览器。它提供WebKit的全部功能,适用于从台式计算机到手机,平板电脑和电视等嵌入式系统的各种系统。 WebKitGTK存在安全漏洞,该漏洞源于内存处理不当,可能导致进程崩溃。

Description (English)

WebKitGTK is a fully functional port for the WebKitkit Rendering Engine of WebKitK, and applies to projects requiring any type of Web integration, including blending HTML/CSS applications to mature Web browsers. It provides the full functionality of WebKit for systems that are embedded in systems ranging from desktops to mobile phones, tablets and televisions. There is a security gap in WebKitGTK, which stems from improper handling of the memory and could lead to the collapse of the process.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

WebKitGTK

Published

2025-12-04

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-66287 https://bugzilla.redhat.com/show_bug.cgi?id=2418857 https://webkitgtk.org/security/WSA-2025-0009.html

Share on: