CVE-2025-9478

Опубликовано: 26 авг. 2025

Источник: debian

Описание

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	139.0.7258.154-1		package
chromium	end-of-life		bullseye	package

Связанные уязвимости

CVE-2025-9478

CVSS3: 8.8

ubuntu

2 месяца назад

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

CVE-2025-9478

CVSS3: 8.8

nvd

2 месяца назад

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

CVE-2025-9478

msrc

2 месяца назад

Chromium: CVE-2025-9478 Use after free in ANGLE

GHSA-q376-jh5m-v6wp

CVSS3: 8.8

github

2 месяца назад

Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

BDU:2025-10882

CVSS3: 8.8

fstec

3 месяца назад

Уязвимость библиотеки ANGLE браузера Google Chrome, позволяющая нарушителю выполнить произвольный код