CVE-2026-11681

CVE-2026-11681 : Use-after-free in Chrome’s Ozone component on Linux prior to 149.0.7827.103 allows a remote attacker to potentially trigger heap corruption via a crafted HTML page. Impact is described as high; the vulnerability is within the Chromium-based Chrome stack and affects the Ozone laye...

SUSE CVE-2026-10899

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-10972

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-10899

CVE-2026-10899 is a real issue described as a use-after-free in the Ozone component of Google Chrome on Linux, before Chrome 149.0.7827.53. The vulnerability stems from heap corruption potentially exploitable via a crafted HTML page after a user interacts with specific UI gestures. Connected sour...

CVE-2026-10895

Use after free in Ozone in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2025-12438

Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: Medium...