MiracleLinux 7 : firefox-91.7.0-3.0.1.el7.AXS7 (AXSA:2022-3096:07)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2022-3096:07 advisory. Mozilla: Use-after-free in XSLT parameter processing CVE-2022-26485 Mozilla: Use-after-free in WebGPU IPC Framework CVE-2022-26486 expat: Malformed ...

Astra Linux – Vulnerability in Firefox

Starting with Firefox 142, it became possible for a compromised child process to trigger a use-after-free in the GPU or browser process through WebGPU-related IPC calls. This vulnerability could potentially be exploited to escape the child process sandbox. This vulnerability was fixed in Firefox...

Astra Linux – Vulnerability in Firefox

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

Astra Linux – Vulnerability in Firefox

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

Astra Linux – Vulnerability in Chromium

A heap buffer overflow in WebGPU in Google Chrome prior to version 141.0.7390.54 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

Astra Linux – Vulnerability in Chromium

The use of after-free in WebGPU within Google Chrome before version 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

Astra Linux – Vulnerability in Firefox

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

PT-2026-7641

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 145.0.7632.45 Description A flaw exists in the WebGPU implementation of Google Chrome. This issue could allow a remote attacker to potentially access memory outside of the intended boundaries. This can occur...

OPENSUSE-SU-2025:20178-1 Security update for chromium

This update for chromium fixes the following issues: Changes in chromium: Chromium 143.0.7499.146 boo1255115: CVE-2025-14765: Use after free in WebGPU CVE-2025-14766: Out of bounds read and write in V8 CVE-2025-14174: Out of bounds memory access in ANGLE...

openSUSE 16 Security Update : chromium (openSUSE-SU-2025:20178-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:20178-1 advisory. Changes in chromium: Chromium 143.0.7499.146 boo1255115: CVE-2025-14765: Use after free in WebGPU CVE-2025-14766: Out of bounds read and write i...

Fedora 43 : cef (2025-6e776254bf)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6e776254bf advisory. Update to cef-143.0.10+g8aed01b + chromium-143.0.7499.146 rhbz2423482 High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of boun...

Fedora 42 : cef (2025-7605ca0d7d)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-7605ca0d7d advisory. Update to cef-143.0.10+g8aed01b + chromium-143.0.7499.146 rhbz2423482 High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of boun...

Fedora 43 : chromium (2025-cd7567466d)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-cd7567466d advisory. Update to 143.0.7499.146 High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of bounds read and write in V8 Force dark mode when...

Fedora 42 : chromium (2025-0805619c28)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-0805619c28 advisory. Update to 143.0.7499.146 High CVE-2025-14765: Use after free in WebGPU High CVE-2025-14766: Out of bounds read and write in V8 Force dark mode when...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0475-1 Rating: important References: 1254776 1255115 Cross-References: CVE-2025-14174 CVE-2025-14372 CVE-2025-14373 CVE-2025-14765 CVE-2025-14766 Affected Products: openSUSE Backports SLE-15-SP6 An update tha...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0476-1 Rating: important References: 1255115 Cross-References: CVE-2025-14174 CVE-2025-14765 CVE-2025-14766 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes three vulnerabilities is now...

Chromium: CVE-2025-14766 Use after free in WebGPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

SUSE CVE-2025-14765

Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

KLA90825 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebGPU can be exploited to cause...

Microsoft Edge (Chromium) < 143.0.3650.96 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 143.0.3650.96. It is, therefore, affected by multiple vulnerabilities as referenced in the December 18, 2025 advisory. - Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote...