PT-2025-50966 · Google+4 · Google Chromium+6

Published

2025-12-10

·

Updated

2026-06-28

·

CVE-2025-14174

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.110 Google Chromium (affected versions not specified) Microsoft Edge (affected versions not specified) Opera (affected versions not specified) Vivaldi versions prior to 144.0.7559.28 WebKitGTK (affected versions not specified)
Description An out-of-bounds memory access flaw exists in the ANGLE graphics library, which translates OpenGL ES calls to Direct3D for Windows systems. This issue occurs due to improper validation of memory boundaries during rendering operations. A remote attacker can exploit this by enticing a user to visit a specially crafted HTML page, potentially leading to arbitrary code execution or a denial of service. This flaw affects all web browsers built on the Chromium open-source project and also impacts the WebKitGTK package. Out-of-bounds memory access is a type of buffer-related flaw where software attempts to read or write data outside the allocated buffer.
Recommendations Update Google Chrome to version 143.0.7499.110 or later. Update Vivaldi to version 144.0.7559.28 or later. Update WebKitGTK packages to version 2.50.4-0ubuntu0.25.04.1. Update Google Chromium, Microsoft Edge, and Opera to the latest available versions provided by the vendors.

Fix

RCE

DoS

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

BDU:2026-00800
CVE-2025-14174
DLA-4414-1
DSA-6083-1
OPENSUSE-SU-2025:15831-1
OPENSUSE-SU-2025:20178-1
OPENSUSE-SU-2026:20065-1
RHSA-2025:23663
RHSA-2025:23700
RHSA-2025:23967
RHSA-2025:23968
RHSA-2025:23969
RHSA-2025:23970
RHSA-2025:23971
RHSA-2025:23972
RHSA-2025:23973
RHSA-2025:23974
RHSA-2025:23975
SUSE-SU-2025:4527-1
SUSE-SU-2025:4528-1
SUSE-SU-2026:0021-1
SUSE-SU-2026:20102-1
USN-7957-1

Affected Products

Angle
Debian
Google Chrome
Google Chromium
Linuxmint
Apple Macos
Ubuntu