CVE-2026-5872: Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page…

CVE-2026-5872 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-5872 Stable Channel Update for ChromeOS / ChromeOS Flex CVE-2026-5872

CVE-2026-5870 [HIGH] Stable Channel Update for Desktop: CVE-2026-5870 Stable Channel Update for Desktop CVE-2026-5870: Integer overflow in Skia. Reported by Google on 2026-03-23 [TBD][ 495679730 ] High CVE-2026-5871: Type Confusion in V8 Reported by Google on 2026-03-24 [TBD][ 496281816 ] High CVE-2026-5872: Use after free in Blink Severity: high

CVE-2026-5872 [HIGH] CWE-825 chromium-browser: Use after free in Blink chromium-browser: Use after free in Blink Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) An use after free flaw was found in the Blink component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=496281816 Statement: Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.

CVE-2026-5872 [HIGH] CVE-2026-5872: chromium - Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote... Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-5872 [HIGH] Google Chrome up to 146.0.7680.178 Blink use after free (ID 496281 / WID-SEC-2026-1030) A vulnerability was found in Google Chrome. It has been declared as critical. The impacted element is an unknown function of the component Blink. The manipulation results in use after free. This vulnerability was named CVE-2026-5872. The attack may be performed from remote. There is no available exploit. It is recommended to upgrade the affected component.

CVE-2026-5872 CWE-416 GHSA-q568-5559-56w7: Use after free in Blink in Google Chrome prior to 147 Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5872 [HIGH] CVE-2026-5872: Use after free in Blink in Google Chrome prior to 147 Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

[HIGH] Microsoft Patch Tuesday April 2026., (Tue, Apr 14th) Microsoft Patch Tuesday April 2026. Published: 2026-04-14. Last Updated: 2026-04-14 17:46:09 UTC by Johannes Ullrich (Version: 1) 0 comment(s) This month's Microsoft Patch Tuesday looks like a record one, but let's look at it a bit closer to understand what is happening The update patches a total of 243 vulnerabilities. However, 78 of them are Chromium issues affecting Microsoft Edge. Patches for Edge were released earlier. This leaves 165 vulnerabilities that are not Edge-related. Of these, 8 are rated critical, and 154 are important. One vulnerability has already been exploited, and another was made public before today but has not yet been seen in the wild. Noteworthy Vulnerabilities: CVE-2026-33827 (Windows TCP/IP Remote Code Execution Vulnerability): As a packet nerd, I love thes

CVE-2026-5872 [HIGH] CVE-2026-5872 Impact, Exploitability, and Mitigation Steps | Wiz ## CVE-2026-5872 : Google Chrome vulnerability analysis and mitigation Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Source : NVD Published April 8, 2026 CNA Score N/A Affected Technologies Google Chrome Chromium Has Public Exploit No Has CISA KEV Exploit No CISA KEV Release Date N/A CISA KEV Due Date N/A Exploitation Probability Percentile (EPSS) 11.4 Exploitation Probability (EPSS) N/A Affected packages and libraries cpe:2.3:a:google:chrome chromium Sources NVD Debian 11, 12, 13, 14 No Fix Added at: Apr 09, 2026 Echo No Fix Added at: Apr 09, 2026 Linux Has Fix Added at: Apr 09, 2026 Windows Has Fix Added at: Apr 09, 2026

CVE-2026-5872 [HIGH] CVE-2026-5872 chromium-browser: Use after free in Blink CVE-2026-5872 chromium-browser: Use after free in Blink Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)