CVE-2026-8578 vulnerabilities

Vulnerabilities for packages: chromium...

SUSE CVE-2026-8578

Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Chromium: CVE-2026-8578 Out of bounds read in GPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

DEBIAN-CVE-2026-8578

Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

CVE-2026-8578

CVE-2026-8578 affects Google Chrome on Linux, with an out-of-bounds read in the GPU component of Chromium. The issue arises in the GPU path of Chromium’s rendering stack and can allow a remote attacker who has already compromised the renderer process to leak cross-origin data through a crafted HT...

CVE-2026-8578

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260515 2026-05-14 21:37:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mltrmr5sjx2q 2026-05-17 18:00:00+00:00| seen|...

Linux Distros Unpatched Vulnerability : CVE-2026-8578

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak...

Oracle Linux 7 : perl-XML-Parser (ELSA-2026-8578)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-8578 advisory. 2.41-10.0.3 - Security update for CVE-2006-10002 and CVE-2006-10003 Orabug: 39220442 Tenable has extracted the preceding description block directly fro...

Fedora: Security Advisory (FEDORA-2025-b7cb89ddd3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CGA-8578-3FM4-5MHG

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2025-8578

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromiu...

MAL-2025-8578 Malicious code in @malware-test-creak-stoor-reals-stunt/test-mlw3-creak-stoor-reals-stunt (npm)

The package @malware-test-creak-stoor-reals-stunt/test-mlw3-creak-stoor-reals-stunt was found to contain malicious code...

Microsoft Edge (Chromium) < 139.0.3405.86 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 139.0.3405.86. It is, therefore, affected by multiple vulnerabilities as referenced in the August 7, 2025 advisory. - Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to...

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

DEBIAN-CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

CVE-2025-8578

creationtimestamp| type| source ---|---|--- 2025-08-07 01:55:51+00:00| seen| Telegram/GC5ktmO9VZ7zHyJUq-3hONDmVhFsMoGPx6uH4gXtJxwWc...

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

CVE-2025-8578

CVE-2025-8578 relates to a use-after-free in the Cast component of Google Chrome/Chromium before version 139.0.7258.66, allowing a remote attacker to trigger heap corruption via a crafted HTML page. The issue affects Chromium-based builds and is addressed by updating to Chromium 139.0.7258.127 or...

CVE-2025-8578

Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...