OPENSUSE-SU-2025:20020-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 141.0.7390.76: Do not send URLs as AIM input. This is to resolve a privacy concern, around passing urls to AI Mode. Chromium 141.0.7390.65 boo1251334: CVE-2025-11458: Heap buffer overflow in Sync CVE-2025-11460: Use after free in Stora...

Fedora 41 : chromium (2025-ed59372bc2)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-ed59372bc2 advisory. Update to 141.0.7390.65 High CVE-2025-11458: Heap buffer overflow in Sync High CVE-2025-11460: Use after free in Storage Medium CVE-2025-11211: Out ...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2025:0389-1 Rating: important References: 1251334 Cross-References: CVE-2025-11211 CVE-2025-11458 CVE-2025-11460 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes three vulnerabilities is now...

Linux Distros Unpatched Vulnerability : CVE-2025-11211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in Media in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform out of bounds memory access via a crafted...

EUVD-2020-7990

Malware in sbrugna...

chromium -- multiple security fixes

Chrome Releases reports: This update includes 3 security fixes: 443196747 High CVE-2025-11458: Heap buffer overflow in Sync. Reported by raven at KunLun lab on 2025-09-05 446722008 High CVE-2025-11460: Use after free in Storage. Reported by Sombra on 2025-09-23 441917796 Medium CVE-2025-11211: Ou...

EUVD-2024-27830

Malicious code in bioql PyPI...

EUVD-2022-43224

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-2886

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebCodecs in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium...

Google Chrome < 87.0.4280.67 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 87.0.4280.67. It is, therefore, affected by multiple vulnerabilities as referenced in the 202011stable-channel-update-for-desktop17 advisory. - Use after Free in Payments in Google Chrome on Android prior to 87.0.4280.66...

RHEL 6 : chromium-browser (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - chromium-browser: Heap buffer overflow in clipboard CVE-2020-16025 - chromium-browser: Out of bounds writ...

Use-After-Free

chromium is vulnerable to a Use-After-Free. The vulnerability due to improper handling of memory in the WebCodecs component. It allows a remote attacker to execute arbitrary read/write operations via a crafted HTML page...

The vulnerability of the WebCodecs component of the Google Chrome browser allows a hacker to execute arbitrary code.

The vulnerability of Google Chrome’s WebCodecs component is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code through a specially created web page...

Debian dsa-5648 : chromium - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5648 advisory. - Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page...

SUSE CVE-2024-2886

Use after free in WebCodecs in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

FreeBSD : chromium -- multiple security fixes (814af1be-ec63-11ee-8e76-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 814af1be-ec63-11ee-8e76-a8a1599412c6 advisory. - Use after free in ANGLE in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to...

Fedora 38 : chromium (2024-b4dab205d7)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-b4dab205d7 advisory. update to 123.0.6312.86 Critical CVE-2024-2883: Use after free in ANGLE High CVE-2024-2885: Use after free in Dawn High CVE-2024-2886: Use after fre...

Chromium: CVE-2024-2886 Use after free in WebCodecs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Microsoft Edge (Chromium) < 122.0.2365.113 / 123.0.2420.65 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 122.0.2365.113 / 123.0.2420.65. It is, therefore, affected by multiple vulnerabilities as referenced in the March 27, 2024 advisory. - Use after free in ANGLE in Google Chrome prior to 123.0.6312.86 allowed a remote...

DEBIAN-CVE-2024-2886

Use after free in WebCodecs in Google Chrome prior to 123.0.6312.86 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...