Bug 2357913 (CVE-2025-24213)

Summary: CVE-2025-24213 webkitgtk: A type confusion issue could lead to memory corruption
Product: [Other] Security Response Reporter: OSIDB Bzimport <bzimport>
Component: vulnerabilityAssignee: Product Security DevOps Team <prodsec-dev>
Status: NEW --- QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: mcatanza
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: ---
Doc Text:
A flaw was found in WebKitGTK. Processing malicious web content can cause a type confusion issue due to improper handling of floats and result in memory corruption.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2357995, 2357996    
Bug Blocks:    

Description OSIDB Bzimport 2025-04-07 14:29:53 UTC 
This issue was addressed with improved handling of floats. This issue is fixed in tvOS 18.4, Safari 18.4, iPadOS 17.7.6, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4. A type confusion issue could lead to memory corruption.
Comment 1 Michael Catanzaro 2025-04-08 01:12:56 UTC 
This CVE is fixed only on ARM architectures by https://github.com/WebKit/WebKit/commit/4c65775f049beec4fe0a50c1243dcfa634bf33e1. x86_64 is not vulnerable. x86 is not vulnerable when the SSE2 instruction set is enabled. Other architectures remain vulnerable. The fix for this CVE causes the build to fail on 32-bit ARM architectures.