Nixpkgs security tracker
9.6 CRITICAL
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): Required (R)
- Scope (S): Changed (C)
- Confidentiality (C): High (H)
- Integrity (I): High (H)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): Required (R)
- Modified Confidentiality (MC): High (H)
- Modified Scope (MS): Changed (C)
- Modified Integrity (MI): High (H)
- Modified Availability (MA): High (H)
Activity log
- Created suggestion
Use after free in Mojo in Google Chrome prior to …
Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
References
Affected products
- <148.0.7778.168
Matching in nixpkgs
pkgs.netflix
Open Netflix in Google Chrome app mode
pkgs.chromedriver
WebDriver server for running Selenium tests on Chrome
-
nixos-unstable 148.0.7778.96
- nixpkgs-unstable 148.0.7778.167
- nixos-unstable-small 148.0.7778.167
-
nixos-25.11 148.0.7778.96
- nixos-25.11-small 148.0.7778.167
- nixpkgs-25.11-darwin 148.0.7778.167
pkgs.mkchromecast
Cast macOS and Linux Audio/Video to your Google Cast and Sonos Devices
-
nixos-unstable 2025-12-21
- nixpkgs-unstable 2025-12-21
- nixos-unstable-small 2025-12-21
-
nixos-25.11 2022-10-31
- nixos-25.11-small 2022-10-31
- nixpkgs-25.11-darwin 2022-10-31
pkgs.chrome-export
Scripts to save Google Chrome's bookmarks and history as HTML bookmarks files
pkgs.go-chromecast
CLI for Google Chromecast, Home devices and Cast Groups
pkgs.google-chrome
Freeware web browser developed by Google
-
nixos-unstable 148.0.7778.96
- nixpkgs-unstable 148.0.7778.167
- nixos-unstable-small 148.0.7778.167
-
nixos-25.11 148.0.7778.96
- nixos-25.11-small 148.0.7778.167
- nixpkgs-25.11-darwin 148.0.7778.167
pkgs.xf86videoopenchrome
VIA Technologies UniChrome and Chrome9 IGP video driver for the Xorg X server
pkgs.chrome-token-signing
Chrome and Firefox extension for signing with your eID on the web
pkgs.chrome-pak-customizer
Simple batch tool to customize pak files in chrome or chromium-based browser
-
nixos-unstable 2.0-unstable-2021-06-24
- nixpkgs-unstable 2.0-unstable-2021-06-24
- nixos-unstable-small 2.0-unstable-2021-06-24
-
nixos-25.11 2.0-unstable-2021-06-24
- nixos-25.11-small 2.0-unstable-2021-06-24
- nixpkgs-25.11-darwin 2.0-unstable-2021-06-24
pkgs.electron-chromedriver
WebDriver server for running Selenium tests on Chrome
pkgs.xf86-video-openchrome
None
pkgs.undetected-chromedriver
Custom Selenium ChromeDriver that passes all bot mitigation systems
-
nixos-unstable 148.0.7778.96
- nixpkgs-unstable 148.0.7778.167
- nixos-unstable-small 148.0.7778.167
-
nixos-25.11 148.0.7778.96
- nixos-25.11-small 148.0.7778.167
- nixpkgs-25.11-darwin 148.0.7778.167
pkgs.electron-chromedriver_37
WebDriver server for running Selenium tests on Chrome
pkgs.electron-chromedriver_38
WebDriver server for running Selenium tests on Chrome
pkgs.electron-chromedriver_39
WebDriver server for running Selenium tests on Chrome
pkgs.electron-chromedriver_40
WebDriver server for running Selenium tests on Chrome
pkgs.electron-chromedriver_41
WebDriver server for running Selenium tests on Chrome
pkgs.xorg.xf86videoopenchrome
None
pkgs.ocamlPackages.chrome-trace
Chrome trace event generation library
pkgs.noto-fonts-monochrome-emoji
Monochrome emoji font
pkgs.python312Packages.pychromecast
Library for Python to communicate with the Google Chromecast
pkgs.python313Packages.pychromecast
Library for Python to communicate with the Google Chromecast
pkgs.python314Packages.pychromecast
Library for Python to communicate with the Google Chromecast
pkgs.ocamlPackages_latest.chrome-trace
Chrome trace event generation library
pkgs.python312Packages.undetected-chromedriver
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
pkgs.python313Packages.undetected-chromedriver
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
pkgs.python314Packages.undetected-chromedriver
Python library for the custom Selenium ChromeDriver that passes all bot mitigation systems
Package maintainers
-
@bdesham Benjamin Esham <benjamin@esham.io>
-
@UlyssesZh Ulysses Zhan <ulysseszhan@gmail.com>
-
@mmahut Marek Mahut <marek.mahut@gmail.com>
-
@networkException networkException <nix@nwex.de>
-
@emilylange Emily Lange <nix@emilylange.de>
-
@TomaSajt TomaSajt
-
@yayayayaka Yaya <github@uwu.is>
-
@liam-murphy14 Liam Murphy <liam.murphy137@gmail.com>
-
@teutat3s teutat3s <teutates@mailbox.org>
-
@zi3m5f zi3m5f <k7n3o3a6f@mozmail.com>
-
@iedame Rafael Ieda <git@ieda.me>
-
@mdaniels5757 Michael Daniels <nix@mdaniels.me>
-
@nagisa Simonas Kazlauskas <nixpkgs@kazlauskas.me>
-
@Shou Benedict Aas <x+g@shou.io>
-
@roberth Robert Hensing <nixpkgs@roberthensing.nl>
-
@nicoonoclaste nicoo <nicoo@debian.org>