Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
{ "priority_reason": "CVE is in CISA-KEV list", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit2-4.0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-18", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-18-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-37", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-37-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.48.5-0ubuntu0.22.04.1" }, { "binary_name": "webkit2gtk-driver-dbgsym", "binary_version": "2.48.5-0ubuntu0.22.04.1" } ], "availability": "No subscription required" }
{ "priority_reason": "CVE is in CISA-KEV list", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-bin", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libjavascriptcoregtk-bin-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "libwebkitgtk-doc", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.48.5-0ubuntu0.24.04.1" }, { "binary_name": "webkit2gtk-driver-dbgsym", "binary_version": "2.48.5-0ubuntu0.24.04.1" } ], "availability": "No subscription required" }
{ "priority_reason": "CVE is in CISA-KEV list", "binaries": [ { "binary_name": "gir1.2-javascriptcoregtk-4.1", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "gir1.2-javascriptcoregtk-6.0", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "gir1.2-webkit-6.0", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "gir1.2-webkit2-4.1", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-4.0-bin", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-1-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-bin", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libjavascriptcoregtk-bin-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkit2gtk-4.0-doc", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkit2gtk-4.1-0-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkit2gtk-4.1-dev", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkitgtk-6.0-4", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkitgtk-6.0-4-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkitgtk-6.0-dev", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "libwebkitgtk-doc", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "webkit2gtk-driver", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "webkitgtk-webdriver", "binary_version": "2.48.5-0ubuntu0.25.04.1" }, { "binary_name": "webkitgtk-webdriver-dbgsym", "binary_version": "2.48.5-0ubuntu0.25.04.1" } ], "availability": "No subscription required" }