CVE-2026-11106

Inappropriate implementation in Media in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

Stable Channel Update for Desktop

The Stable channel has been updated to 146.0.7680.75/76 for Windows/Mac and 146.0.7680.75 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log Security Fixes and Rewards Updated 2026-03-13: The previous version of these notes...

Linux Distros Unpatched Vulnerability : CVE-2025-14373

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed a remote attacker to perform domain spoofing via a crafted...

Fedora 43 : cef (2025-604e02ca72)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-604e02ca72 advisory. Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High...

CVE-2024-13983

CVE-2024-13983 concerns Google Chrome’s Lens feature on iOS before 136.0.7103.59, where an imperfect validation of QR codes allows a remote attacker to perform a UI masquerade via a crafted QR. The underlying issue is in Lens’ handling of QR input, enabling an interface spoofing attack. Affected ...

Fedora 41 : chromium (2025-2d4d91b00a)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2d4d91b00a advisory. Update to 141.0.7390.54 High CVE-2025-11205: Heap buffer overflow in WebGPU High CVE-2025-11206: Heap buffer overflow in Video Medium CVE-2025-11207...

Linux Distros Unpatched Vulnerability : CVE-2025-11216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video...

EUVD-2016-5379

Malware in sbrugna...

EUVD-2014-4122

Malware in sbrugna...

EUVD-2018-0139

Malware in sbrugna...

EUVD-2021-18751

Malware in sbrugna...

EUVD-2010-0611

Malware in sbrugna...

EUVD-2021-8565

Malicious code in bioql PyPI...

EUVD-2024-3603

Malicious code in bioql PyPI...

EUVD-2022-52163

Malicious code in bioql PyPI...

Chromium: CVE-2025-11212 Inappropriate implementation in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome < 141.0.7390.54 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 141.0.7390.54. It is, therefore, affected by multiple vulnerabilities as referenced in the 202509stable-channel-update-for-desktop30 advisory. - Use after free in V8 in Google Chrome prior to 141.0.7390.54 allowed a...

CVE-2020-36447

An issue was discovered in the v9 crate through 2020-12-18 for Rust. There is an unconditional implementation of Sync for SyncRef...

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 9 security bugs in Chromium: CVE-2024-12693: Out of bounds memory access in V8 CVE-2024-12694: Use after free in Compositing CVE-2025-0436: Integer overflow in Skia CVE-2025-0437: Out of bounds read in Metrics CVE-2025-0438: Stack buffer overflo...

CVE-2024-53137 ARM: fix cacheflush with PAN

In the Linux kernel, the following vulnerability has been resolved: ARM: fix cacheflush with PAN It seems that the cacheflush syscall got broken when PAN for LPAE was implemented. User access was not enabled around the cache maintenance instructions, causing them to fault...