vulnerability
Ubuntu: USN-7702-1 (CVE-2025-6558): WebKitGTK vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Jul 15, 2025 | Aug 20, 2025 | Aug 21, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Jul 15, 2025
Added
Aug 20, 2025
Modified
Aug 21, 2025
Description
Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Solutions
ubuntu-upgrade-libjavascriptcoregtk-4-0-18ubuntu-upgrade-libjavascriptcoregtk-4-1-0ubuntu-upgrade-libjavascriptcoregtk-6-0-1ubuntu-upgrade-libwebkit2gtk-4-0-37ubuntu-upgrade-libwebkit2gtk-4-1-0ubuntu-upgrade-libwebkitgtk-6-0-4
References
- CVE-2025-6558
- https://attackerkb.com/topics/CVE-2025-6558
- CWE-20
- UBUNTU-USN-7702-1
- URL-https://chromereleases.googleblog.com/2025/07/stable-channel-update-for-desktop_15.html
- URL-https://ubuntu.com/security/notices/USN-7702-1
- URL-https://webkitgtk.org/security/WSA-2025-0005.html
- URL-https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- URL-https://www.cve.org/CVERecord?id=CVE-2025-6558
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.