CVE-2026-11681

CVE-2026-11681 describes a use-after-free in Ozone within Google Chrome on Linux, leading to potential heap corruption via a crafted HTML page. Affected: Chrome on Linux; component: Ozone; root cause: use-after-free. Impact: remote attacker could potentially exploit heap corruption. Affected vers...

SUSE CVE-2026-10899

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-10972

Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

CVE-2026-10899

CVE-2026-10899 is a real issue described as a use-after-free in the Ozone component of Google Chrome on Linux, before Chrome 149.0.7827.53. The vulnerability stems from heap corruption potentially exploitable via a crafted HTML page after a user interacts with specific UI gestures. Connected sour...

CVE-2026-10895

Use after free in Ozone in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: Critical...

CVE-2025-12438

Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: Medium...