Package "webkit2gtk"

  webkit2gtk (2.52.3-0ubuntu0.25.10.1) questing-security; urgency=medium

  * Update to 2.52.3 to fix security issues.
    - debian/libwebkit2gtk-4.0-37.symbols: added new symbols.
    - CVE-2025-43213, CVE-2025-43214, CVE-2025-43457, CVE-2025-43511,
      CVE-2025-46299, CVE-2026-20608, CVE-2026-20635, CVE-2026-20636,
      CVE-2026-20643, CVE-2026-20644, CVE-2026-20652, CVE-2026-20664,
      CVE-2026-20665, CVE-2026-20676, CVE-2026-20691, CVE-2026-28857,
      CVE-2026-28859, CVE-2026-28861, CVE-2026-28871
  * Added some patches from Debian's 2.52.3-2 package (Thanks to Alberto
    Garcia):
    - fix-atomics-detection.patch: Improve detection of whether libatomic
      is required. This was failing in some architectures (armhf, armel)
      with some versions of clang.
    - fix-big-endian-string.patch: Use the native byte order when
      converting from utf8 to utf16. This fixes strings in big-endian
      machine.

 -- Marc Deslauriers <email address hidden> Thu, 23 Apr 2026 08:35:09 -0400

  webkit2gtk (2.50.4-0ubuntu0.25.10.1) questing-security; urgency=medium

  * Update to 2.50.4 to fix security issues.
    - CVE-2025-14174, CVE-2025-43501, CVE-2025-43529, CVE-2025-43531,
      CVE-2025-43535, CVE-2025-43536, CVE-2025-43541

 -- Marc Deslauriers <email address hidden> Tue, 06 Jan 2026 08:15:42 -0500

  webkit2gtk (2.50.3-0ubuntu0.25.10.1) questing-security; urgency=medium

  * Update to 2.50.3 to fix security issues.
    - Dropped patches no longer needed:
      + debian/patches/fix-link-error.patch
      + debian/patches/fix-crash.patch
    - CVE-2025-13947
    - CVE-2025-43421
    - CVE-2025-43458
    - CVE-2025-66287

 -- Marc Deslauriers <email address hidden> Tue, 09 Dec 2025 08:33:40 -0500

  webkit2gtk (2.50.2-0ubuntu0.25.10.2) questing-security; urgency=medium

  * Update to 2.50.2 to fix security issues.
    - Add patches from resolute package:
      + debian/patches/fix-link-error.patch:
      + debian/patches/fix-crash.patch:
    - CVE-2025-43392, CVE-2025-43425, CVE-2025-43427, CVE-2025-43429,
      CVE-2025-43430, CVE-2025-43431, CVE-2025-43432, CVE-2025-43434,
      CVE-2025-43440, CVE-2025-43443

 -- Marc Deslauriers <email address hidden> Mon, 01 Dec 2025 07:32:52 -0500

  webkit2gtk (2.50.1-0ubuntu0.25.10.1) questing-security; urgency=medium

  * Update to 2.50.1 to fix security issues.
    - CVE-2025-43343
  * debian/patches, debian/source/lintian-overrides, debian/copyright,
    debian/gbp.conf, debian/*symbols: sync with resolute package.

 -- Marc Deslauriers <email address hidden> Wed, 29 Oct 2025 09:40:19 -0400