5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
19.1%
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a
limited sandbox bypass that allows a sandboxed process to trick host
processes into thinking the sandboxed process is not confined by the
sandbox, by abusing VFS syscalls that manipulate its filesystem namespace.
The impact is limited to host services that create UNIX sockets that WebKit
mounts inside its sandbox, and the sandboxed process remains otherwise
confined. NOTE: this is similar to CVE-2021-41133.
Author | Note |
---|---|
jdstrand | webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8 |
mdeslaur | the bubblewrap sandbox is disabled in bionic |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
ubuntu | 20.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
ubuntu | 22.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
ubuntu | 23.10 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
ubuntu | 16.04 | noarch | qtwebkit-opensource-src | < any | UNKNOWN |
ubuntu | 18.04 | noarch | qtwebkit-source | < any | UNKNOWN |
ubuntu | 16.04 | noarch | qtwebkit-source | < any | UNKNOWN |
ubuntu | 20.04 | noarch | webkit2gtk | < 2.34.1-0ubuntu0.20.04.1 | UNKNOWN |
ubuntu | 21.04 | noarch | webkit2gtk | < 2.34.1-0ubuntu0.21.04.1 | UNKNOWN |
ubuntu | 21.10 | noarch | webkit2gtk | < 2.34.1-0ubuntu0.21.10.1 | UNKNOWN |
github.com/flatpak/flatpak/security/advisories/GHSA-67h7-w3jq-vh4q
launchpad.net/bugs/cve/CVE-2021-42762
nvd.nist.gov/vuln/detail/CVE-2021-42762
security-tracker.debian.org/tracker/CVE-2021-42762
ubuntu.com/security/notices/USN-5127-1
webkitgtk.org/security/WSA-2021-0006.html
www.cve.org/CVERecord?id=CVE-2021-42762
5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
19.1%