CVE-2025-14174

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.110 Google Chromium (affected versions not specified) Microsoft Edge (affected versions not specified) Opera (affected versions not specified) WebKitGTK (affected versions not specified)

Description An out-of-bounds memory access issue exists in the ANGLE component, a graphics library that translates OpenGL ES calls to Direct3D for Windows systems. This occurs due to improper validation of memory boundaries during rendering operations. A remote attacker can exploit this by enticing a user to visit a specially crafted HTML page, potentially leading to arbitrary code execution or a denial of service. This issue affects browsers built on the Chromium open-source project and the WebKitGTK package.

Recommendations Update Google Chrome to version 143.0.7499.110 or later. Update Google Chromium, Microsoft Edge, and Opera to the latest available versions containing the fix. Update WebKitGTK packages to version 2.50.4-0ubuntu0.25.04.1.