Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
{ "binaries": [ { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-javascriptcoregtk-4.0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-javascriptcoregtk-4.1" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-javascriptcoregtk-6.0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-webkit-6.0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-webkit2-4.0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "gir1.2-webkit2-4.1" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.0-18" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.0-18-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.0-bin" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.0-bin-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-6.0-1" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libjavascriptcoregtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.0-37" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.0-37-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.0-doc" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkit2gtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkitgtk-6.0-4" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkitgtk-6.0-4-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "libwebkitgtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "webkit2gtk-driver" }, { "binary_version": "2.48.5-0ubuntu0.22.04.1", "binary_name": "webkit2gtk-driver-dbgsym" } ], "availability": "No subscription required", "priority_reason": "CVE is in CISA-KEV list" }
{ "binaries": [ { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "gir1.2-javascriptcoregtk-4.1" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "gir1.2-javascriptcoregtk-6.0" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "gir1.2-webkit-6.0" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "gir1.2-webkit2-4.1" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-4.0-bin" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-6.0-1" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-bin" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libjavascriptcoregtk-bin-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkit2gtk-4.0-doc" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkit2gtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkit2gtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkit2gtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkitgtk-6.0-4" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkitgtk-6.0-4-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkitgtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "libwebkitgtk-doc" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "webkit2gtk-driver" }, { "binary_version": "2.48.5-0ubuntu0.24.04.1", "binary_name": "webkit2gtk-driver-dbgsym" } ], "availability": "No subscription required", "priority_reason": "CVE is in CISA-KEV list" }
{ "binaries": [ { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "gir1.2-javascriptcoregtk-4.1" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "gir1.2-javascriptcoregtk-6.0" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "gir1.2-webkit-6.0" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "gir1.2-webkit2-4.1" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-4.0-bin" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-6.0-1" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-bin" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libjavascriptcoregtk-bin-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkit2gtk-4.0-doc" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkit2gtk-4.1-0" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkit2gtk-4.1-0-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkit2gtk-4.1-dev" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkitgtk-6.0-4" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkitgtk-6.0-4-dbgsym" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkitgtk-6.0-dev" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "libwebkitgtk-doc" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "webkit2gtk-driver" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "webkitgtk-webdriver" }, { "binary_version": "2.48.5-0ubuntu0.25.04.1", "binary_name": "webkitgtk-webdriver-dbgsym" } ], "availability": "No subscription required", "priority_reason": "CVE is in CISA-KEV list" }