Debian Chromium vulnerabilities

CVE-2025-1006 [HIGH] CVE-2025-1006: chromium - Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a rem... Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially exploit heap corruption via a crafted web app. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 133.0.6943.126-1~deb12u1) bullseye: open forky: resolved (fixed in 133.0.6943.126-1) sid: resolved (fixed in 133.0.6943.126-1) trixie:

CVE-2025-5419 [HIGH] CVE-2025-5419: chromium - Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allow... Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 137.0.7151.68-1~deb12u1) bullseye: open forky: resolved (fixed in 137.0.7151.68-1) sid: resolved (fixed in 137.0.7151.68-1) tri

CVE-2025-11206 [HIGH] CVE-2025-11206: chromium - Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a ... Heap buffer overflow in Video in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 141.0.7390.54-1~deb12u1) bullseye: open forky: resolved (fixed in 141.0.7390.54-1) sid: resolved (fixed in 141.0.7390.54-1) trixi

CVE-2025-5280 [HIGH] CVE-2025-5280: chromium - Out of bounds write in V8 in Google Chrome prior to 137.0.7151.55 allowed a remo... Out of bounds write in V8 in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 137.0.7151.55-3~deb12u1) bullseye: open forky: resolved (fixed in 137.0.7151.55-1) sid: resolved (fixed in 137.0.7151.55-1) trixie: reso

CVE-2025-0443 [HIGH] CVE-2025-0443: chromium - Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.... Insufficient data validation in Extensions in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform privilege escalation via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 132.0.6834.83-1~deb12u1) bullseye: open forky: resolved (fixed in 132

CVE-2025-1920 [HIGH] CVE-2025-1920: chromium - Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote at... Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 134.0.6998.88-1~deb12u1) bullseye: open forky: resolved (fixed in 134.0.6998.88-1) sid: resolved (fixed in 134.0.6998.88-1) trixie: resolved

CVE-2025-0611 [HIGH] CVE-2025-0611: chromium - Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remot... Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 132.0.6834.110-1~deb12u1) bullseye: open forky: resolved (fixed in 132.0.6834.110-1) sid: resolved (fixed in 132.0.6834.110-1) trixie: re

CVE-2025-4096 [HIGH] CVE-2025-4096: chromium - Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a r... Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 136.0.7103.59-2~deb12u2) bullseye: open forky: resolved (fixed in 136.0.7103.59-2) sid: resolved (fixed in 136.0.7103.59-2) trixie: r

CVE-2025-0291 [HIGH] CVE-2025-0291: chromium - Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote a... Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 131.0.6778.264-1~deb12u1) bullseye: open forky: resolved (fixed in 131.0.6778.264-1) sid: resolved (fixed in 131.0.6778.264-1) trixie: r

CVE-2025-0997 [HIGH] CVE-2025-0997: chromium - Use after free in Navigation in Google Chrome prior to 133.0.6943.98 allowed a r... Use after free in Navigation in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 133.0.6943.98-1~deb12u1) bullseye: open forky: resolved (fixed in 133.0.6943.98-1) sid: resolved (fixed in 133.0.6943.98-1) tr

CVE-2025-12725 [HIGH] CVE-2025-12725: chromium - Out of bounds read in WebGPU in Google Chrome on Android prior to 142.0.7444.137... Out of bounds read in WebGPU in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.134-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.134-1) sid: resolved (fixed in 142.0.74

CVE-2025-1919 [HIGH] CVE-2025-1919: chromium - Out of bounds read in Media in Google Chrome prior to 134.0.6998.35 allowed a re... Out of bounds read in Media in Google Chrome prior to 134.0.6998.35 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 134.0.6998.35-1~deb12u1) bullseye: open forky: resolved (fixed in 134.0.6998.35-1) sid: resolved (fixed in 134.0.6998.35

CVE-2025-11209 [HIGH] CVE-2025-11209: chromium - Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141... Inappropriate implementation in Omnibox in Google Chrome on Android prior to 141.0.7390.54 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 141.0.7390.54-1~deb12u1) bullseye: open forky: resolved (fixed in 141.0.7390.54-1) sid: resolved (f

CVE-2025-12726 [HIGH] CVE-2025-12726: chromium - Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0... Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0.7444.137 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.134-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.744

CVE-2025-0999 [HIGH] CVE-2025-0999: chromium - Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a re... Heap buffer overflow in V8 in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 133.0.6943.126-1~deb12u1) bullseye: open forky: resolved (fixed in 133.0.6943.126-1) sid: resolved (fixed in 133.0.6943.126-1) trixie:

CVE-2025-0995 [HIGH] CVE-2025-0995: chromium - Use after free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote at... Use after free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 133.0.6943.98-1~deb12u1) bullseye: open forky: resolved (fixed in 133.0.6943.98-1) sid: resolved (fixed in 133.0.6943.98-1) trixie: resolved

CVE-2025-12438 [HIGH] CVE-2025-12438: chromium - Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.74... Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.59-1) sid: resolved (fixed in 142

CVE-2025-10502 [HIGH] CVE-2025-10502: chromium - Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a... Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 140.0.7339.185-1~deb12u1) bullseye: open forky: resolved (fixed in 140.0.7339.185-1) sid: resolved (fixed in 140.0.7339.185

CVE-2025-2136 [HIGH] CVE-2025-2136: chromium - Use after free in Inspector in Google Chrome prior to 134.0.6998.88 allowed a re... Use after free in Inspector in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 134.0.6998.88-1~deb12u1) bullseye: open forky: resolved (fixed in 134.0.6998.88-1) sid: resolved (fixed in 134.0.6998.88-1) trixie:

CVE-2025-12432 [HIGH] CVE-2025-12432: chromium - Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to ... Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.59-1) sid: resolved (fixed in 142.0.7444.59-1) trixie: resolved (fixed i