StackPatch is liveSee product

Back to CVE digest
CVE-2025-43457 · cross-distro fix matrix

CVE-2025-43457: Several security issues were discovered in the WebKitGTK Web and JavaScript

Affects 3 Linux releases across 50 (distro × package) combinations. First disclosed: 2026-05-06.

Fix per ecosystem

Each block below is a distro release where CVE-2025-43457 has a known fix. Run the listed command on that distro to remediate.

Ubuntu noble

Source: Ubuntu USN

  • webkit2gtk→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y webkit2gtk
  • gir1.2-javascriptcoregtk-4.1→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-4.1
  • gir1.2-javascriptcoregtk-6.0→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-6.0
  • gir1.2-webkit-6.0→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit-6.0
  • gir1.2-webkit2-4.1→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit2-4.1
  • libjavascriptcoregtk-4.0-bin→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.0-bin
  • libjavascriptcoregtk-4.1-0→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-0
  • libjavascriptcoregtk-4.1-dev→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-dev
  • libjavascriptcoregtk-6.0-1→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-1
  • libjavascriptcoregtk-6.0-dev→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-dev
  • libjavascriptcoregtk-bin→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-bin
  • libwebkit2gtk-4.0-doc→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.0-doc
  • libwebkit2gtk-4.1-0→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-0
  • libwebkit2gtk-4.1-dev→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-dev
  • libwebkitgtk-6.0-4→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-6.0-4
  • libwebkitgtk-6.0-dev→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-6.0-dev
  • libwebkitgtk-doc→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-doc
  • webkit2gtk-driver→ fixed in2.52.3-0ubuntu0.24.04.1USN-8237-1
    sudo apt-get install --only-upgrade -y webkit2gtk-driver

Ubuntu questing

Source: Ubuntu USN

  • webkit2gtk→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y webkit2gtk
  • gir1.2-javascriptcoregtk-4.1→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-4.1
  • gir1.2-javascriptcoregtk-6.0→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-6.0
  • gir1.2-webkit-6.0→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit-6.0
  • gir1.2-webkit2-4.1→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit2-4.1
  • libjavascriptcoregtk-4.0-bin→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.0-bin
  • libjavascriptcoregtk-4.1-0→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-0
  • libjavascriptcoregtk-4.1-dev→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-dev
  • libjavascriptcoregtk-6.0-1→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-1
  • libjavascriptcoregtk-6.0-dev→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-dev
  • libjavascriptcoregtk-bin→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-bin
  • libwebkit2gtk-4.0-doc→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.0-doc
  • libwebkit2gtk-4.1-0→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-0
  • libwebkit2gtk-4.1-dev→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-dev
  • libwebkitgtk-6.0-4→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-6.0-4
  • libwebkitgtk-6.0-dev→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-6.0-dev
  • libwebkitgtk-doc→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-doc
  • webkit2gtk-driver→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y webkit2gtk-driver
  • webkitgtk-webdriver→ fixed in2.52.3-0ubuntu0.25.10.1USN-8237-1
    sudo apt-get install --only-upgrade -y webkitgtk-webdriver

Ubuntu resolute

Source: Ubuntu USN

  • webkit2gtk→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y webkit2gtk
  • gir1.2-javascriptcoregtk-4.1→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-4.1
  • gir1.2-javascriptcoregtk-6.0→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-javascriptcoregtk-6.0
  • gir1.2-webkit-6.0→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit-6.0
  • gir1.2-webkit2-4.1→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y gir1.2-webkit2-4.1
  • libjavascriptcoregtk-4.1-0→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-0
  • libjavascriptcoregtk-4.1-dev→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-4.1-dev
  • libjavascriptcoregtk-6.0-1→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-1
  • libjavascriptcoregtk-6.0-dev→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-6.0-dev
  • libjavascriptcoregtk-bin→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libjavascriptcoregtk-bin
  • libwebkit2gtk-4.1-0→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-0
  • libwebkit2gtk-4.1-dev→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkit2gtk-4.1-dev
  • libwebkitgtk-6.0-4→ fixed in2.52.3-0ubuntu0.26.04.2USN-8237-1
    sudo apt-get install --only-upgrade -y libwebkitgtk-6.0-4
Are YOU affected by CVE-2025-43457?

5-second check on your actual server. Reads /etc/os-release, uname -r, and the distro's package manager; matches against this same cross-source index live.

curl https://mindsparkstack.com/scan.sh | bash
Form-based quickscan View on NVD
Continuous monitoring beats manual checking

CVE-2025-43457dropped silently in your distro's update channel. Every new CVE is the same story. StackPatch runs the matcher hourly against all 5 sources and emails the exact remediation when something new applies to one of your servers. From $9/mo, 14-day free trial, cancel anytime.

See StackPatch (from $9/mo)