CVE-2026-6304
published 2026-04-15CVE-2026-6304: Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a…
high8.3CVSS 3.1
AVNACHPRNUIRSCCHIHAH
Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome | < 147.0.7727.101 | 147.0.7727.101 | |
| chrome | >= 147.0.7727.101 < 147.0.7727.101 | 147.0.7727.101 | |
| chrome_chrome | — | — |
Chrome
Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-6304
vendor_chrome·2026-04-22·CVSS 8.3
CVE-2026-6304 [HIGH] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2026-6304
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2026-6304
Chrome
Stable Channel Update for Desktop: CVE-2026-6303
vendor_chrome·2026-04-15·CVSS 8.3
CVE-2026-6303 [HIGH] Stable Channel Update for Desktop: CVE-2026-6303
Stable Channel Update for Desktop
CVE-2026-6303: Use after free in Codecs. Reported by Google on 2026-03-25 [N/A][ 496393742 ] High CVE-2026-6304: Use after free in Graphite
Reported by Google on 2026-03-26 [TBD][ 496618639 ] High CVE-2026-6305: Heap buffer overflow in PDFium
Severity: high
Red Hat
chromium-browser: Use after free in Graphite
vendor_redhat·2026-04-15·CVSS 8.3
CVE-2026-6304 [HIGH] CWE-825 chromium-browser: Use after free in Graphite
chromium-browser: Use after free in Graphite
An use after free flaw was found in the Graphite component of the Chromium browser.
Upstream bug(s):
https://code.google.com/p/chromium/issues/detail?id=496393742
Statement: Red Hat Product Security rates the severity of this flaw as determined by the Google Chrome Security Advisory.
VulDB
Google Chrome up to 147.0.7727.55 Graphite use after free (ID 496393 / Nessus ID 307658)
vuldb·2026-04-28·CVSS 8.3
CVE-2026-6304 [HIGH] Google Chrome up to 147.0.7727.55 Graphite use after free (ID 496393 / Nessus ID 307658)
A vulnerability identified as critical has been detected in Google Chrome. This issue affects some unknown processing of the component Graphite. The manipulation leads to use after free.
This vulnerability is traded as CVE-2026-6304. It is possible to initiate the attack remotely. There is no exploit available.
You should upgrade the affected component.
GHSA
GHSA-qhxw-36rq-x2m4: Use after free in Graphite in Google Chrome prior to 147
ghsa_unreviewed·2026-04-15
CVE-2026-6304 [HIGH] CWE-416 GHSA-qhxw-36rq-x2m4: Use after free in Graphite in Google Chrome prior to 147
Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-
bugzilla·2026-04-17·CVSS 8.8
CVE-2026-6299 [HIGH] CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-
CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-2026-6363 ... chromium: various flaws [fedora-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Bugzilla
CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-
bugzilla·2026-04-17·CVSS 8.8
CVE-2026-6299 [HIGH] CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-
CVE-2026-6299 CVE-2026-6303 CVE-2026-6304 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6361 CVE-2026-6363 ... chromium: various flaws [epel-all]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Bugzilla
CVE-2026-6304 google-chrome: chromium: Google Chrome and Chromium: Sandbox escape via use-after-free vulnerability in Graphite.
bugzilla·2026-04-15·CVSS 8.3
CVE-2026-6304 [HIGH] CVE-2026-6304 google-chrome: chromium: Google Chrome and Chromium: Sandbox escape via use-after-free vulnerability in Graphite.
CVE-2026-6304 google-chrome: chromium: Google Chrome and Chromium: Sandbox escape via use-after-free vulnerability in Graphite.
Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
2026-04-15
Published