CVE-2021-42762

MEDIUM

WebKitGTK <2.34.1 - Privilege Escalation

Title source: llm
STIX 2.1

Description

BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. The impact is limited to host services that create UNIX sockets that WebKit mounts inside its sandbox, and the sandboxed process remains otherwise confined. NOTE: this is similar to CVE-2021-41133.

References (11)

Core 11
Core References
Exploit, Issue Tracking, Vendor Advisory x_refsource_misc
https://bugs.webkit.org/show_bug.cgi?id=231479
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/10/26/9
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/10/27/1
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/10/27/2
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2021/10/27/4
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2021/dsa-4995
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2021/dsa-4996

Scores

CVSS v3 5.3
EPSS 0.0001
EPSS Percentile 0.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Details

Status published
Products (7)
debian/debian_linux 10.0
debian/debian_linux 11.0
fedoraproject/fedora 33
fedoraproject/fedora 34
fedoraproject/fedora 35
webkitgtk/webkitgtk < 2.34.1
wpewebkit/wpe_webkit < 2.34.1
Published Oct 20, 2021
Tracked Since Feb 18, 2026