[SECURITY] Fedora 43 Update: chromium-142.0.7444.175-2.fc43

Chromium is an open-source web browser, powered by WebKit Blink...

Google Chrome Code Problem Vulnerability (CNVD-2025-29236)

Google Chrome is a web browser developed by Google. A security vulnerability exists in Google Chrome prior to version 142.0.7444.59, which stems from a flaw in the V8 engine's handling of object types. The vulnerability can be exploited by an attacker to trigger heap corruption via a specially...

SUSE CVE-2025-13223

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

EUVD-2025-197886

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13224

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

EUVD-2025-197896

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-12444

Incorrect security UI in Fullscreen UI in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

CVE-2025-12432

Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-12729

CVE-2025-12729 concerns an improper Omnibox implementation in Google Chrome on Android before 142.0.7444.137, enabling a remote attacker who entices a user to perform specific UI gestures to spoof UI via a crafted HTML page. Public sources in connected documents indicate the underlying Chromium c...

CVE-2025-12440

Inappropriate implementation in Autofill in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Low...

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 142 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 142.0.7444.59 Linux 142.0.7444.59/60 Windows and 142.0.7444.60 Mac contains a number of fixes and improvements -- a list of...

EUVD-2025-25240

Malicious code in bioql PyPI...

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142. Some of these bugs showed evidence of memory corruption and we presume th...

CVE-2025-10537

CVE-2025-10537 involves memory-safety bugs in Mozilla Firefox and Thunderbird (Firefox ESR 140.2/ Thunderbird ESR 140.2; Firefox 142/ Thunderbird 142) with potential to corrupt memory and, with enough effort, could allow arbitrary code execution. Affected: Firefox < 143, Firefox ESR < 140.3...

thunderbird: firefox: Memory safety bugs fixed in Firefox ESR 115.27, Firefox ESR 128.14, Thunderbird ESR 128.14, Firefox ESR 140.2, Thunderbird ESR 140.2, Firefox 142 and Thunderbird 142

A flaw was found in Thunderbird and Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs are present in the following versions: Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141, a...

Mozilla Firefox for iOS Denial of Service Vulnerability (CNVD-2025-19565)

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. A denial of service vulnerability exists in Mozilla Firefox for iOS prior to version 142, which can be exploited by attackers to cause a denial of service...

Mozilla Firefox for iOS Denial of Service Vulnerability (CNVD-2025-19566)

Mozilla Firefox for iOS is a web browser designed for iOS devices by the US-based Mozilla Foundation. A denial of service vulnerability exists in Mozilla Firefox for iOS prior to version 142, which can be exploited by attackers to cause a denial of service...

CVE-2025-55028

Malicious scripts utilizing repetitive JavaScript alerts could prevent client user interaction in some scenarios and allow for denial of service attacks. This vulnerability was fixed in Firefox for iOS 142...

Mozilla Firefox Security Update (mfsa_2025-64) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

SUSE CVE-2025-9186

Spoofing issue in the Address Bar component of Firefox Focus for Android. This vulnerability was fixed in Firefox 142...