CVE-2026-11236

An insufficient policy enforcement flaw was found in the Web Bluetooth component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496427030...

Microsoft and Adobe Patch Tuesday, May 2026 Security Update Review

May 2026's Patch Tuesday arrives with Microsoft addressing a fresh set of vulnerabilities across its ecosystem, reinforcing the ongoing need for timely patching in an increasingly threat-heavy landscape. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for May 2026 This...

openSUSE 15 Security Update : chromium (openSUSE-SU-2025:0070-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0070-1 advisory. Chromium 133.0.6943.126 boo1237343 - CVE-2025-0999: Heap buffer overflow in V8 - CVE-2025-1426: Heap buffer overflow in GPU - CVE-2025-1006: Use...

Use After Free

Overview org.webjars.npm:electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to Use After Free through the V8 engine. Remediation A fix was pushed into the master branch but not yet...

Android Browser File Theft

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Browser File Theft', 'Description' = %q This module steals the cookie, password, and autofill databases from the Browser application on...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2024:0001-1 Rating: important References: Cross-References: CVE-2023-6702 CVE-2023-6703 CVE-2023-6704 CVE-2023-6705 CVE-2023-6706 CVE-2023-6707 CVE-2023-7024 CVSS scores: CVE-2023-6702 NVD : 8.8...

OPENSUSE-SU-2023:0114-1 Security update for opera

This update for opera fixes the following issues: - Update to 99.0.4788.13 CHR-9290 Update Chromium on desktop-stable-113-4788 to 113.0.5672.127 DNA-107317 delayLoadHelper2 crash in crashreporter - The update to chromium 113.0.5672.127 fixes following issues: CVE-2023-2721, CVE-2023-2722,...

OPENSUSE-SU-2021:0296-1 Security update for opera

This update for opera fixes the following issues: - Update to version 74.0.3911.107 - CHR-8311 Update chromium on desktop-stable-88-3911 to 88.0.4324.150 - DNA-90329 Implement clientcapabilities negotiation for Flow / Sync - DNA-90560 Search Tabs Open Tabs On Top - DNA-90620 Add opauto tests for...

OSV-2017-73 UNKNOWN READ in rawspeed::MosDecoder::decodeRawInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2479 Crash type: UNKNOWN READ Crash state: rawspeed::MosDecoder::decodeRawInternal rawspeed::RawDecoder::decodeRaw start...

OPENSUSE-SU-2020:1032-1 Security update for chromium

This update for chromium fixes the following issues: Update to 83.0.4103.116 boo1173251: CVE-2020-6509: Use after free in extensions - Add patch to work with new ffmpeg bsc1173292 - Add multimedia fix for disabled location and also try one additional patch from Debian on the same issue boo1173107...

FFmpeg Information Disclosure Vulnerability

Integer underflow in the movreaddefault function in libavformat/mov.c in FFmpeg allows remote attackers to obtain sensitive information from heap and/or stack memory via a crafted MP4 file. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced...

USN-2960-1 oxide-qt vulnerabilities

An out of bounds write was discovered in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code. CVE-2016-1660 It was discovered that Blink assumes that a frame...

USN-2860-1 oxide-qt vulnerabilities

A race condition was discovered in the MutationObserver implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the...

USN-2582-1 oxide-qt vulnerabilities

A use-after-free was discovered in the DOM implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the sandboxed render...

USN-2495-1 oxide-qt vulnerabilities

A use-after-free bug was discovered in the DOM implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed rende...

Google Chrome Multiple Vulnerabilities - Sep12 (Mac OS X-01)

This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnsep12macosx01.nasl 5963 2017-04-18 09:02:14Z teissa $ Google Chrome Multiple Vulnerabilities - Sep12 Mac OS X-01 Authors: Madhuri D Copyright: Copyright c 2012...

CVE-2011-3034

Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving an SVG document...