Debian Chromium vulnerabilities

CVE-2025-12907 [HIGH] CVE-2025-12907: chromium - Insufficient validation of untrusted input in Devtools in Google Chrome prior to... Insufficient validation of untrusted input in Devtools in Google Chrome prior to 140.0.7339.80 allowed a remote attacker to execute arbitrary code via user action in Devtools. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 140.0.7339.80-1~deb12u1) bullseye: open forky: resolved (fixed in 140.0.7339.80-1) sid: resolved (fixed in 140.0.73

CVE-2025-6558 [HIGH] CVE-2025-6558: chromium - Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome pri... Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 138.0.7204.157-1~deb12u1) bullseye: open forky: resolved (fixed in 138.0.7204.157-1) sid: resolved (

CVE-2025-8879 [HIGH] CVE-2025-8879: chromium - Heap buffer overflow in libaom in Google Chrome prior to 139.0.7258.127 allowed ... Heap buffer overflow in libaom in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to potentially exploit heap corruption via a curated set of gestures. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 139.0.7258.127-1~deb12u1) bullseye: open forky: resolved (fixed in 139.0.7258.127-1) sid: resolved (fixed in 139.0.7258.127-

CVE-2025-11756 [HIGH] CVE-2025-11756: chromium - Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed... Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote attacker who had compromised the renderer process to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 141.0.7390.107-1~deb12u1) bullseye: open forky: resolved (fixed in 141.0.7

CVE-2025-13638 [HIGH] CVE-2025-13638: chromium - Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a... Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 143.0.7499.40-1~deb12u1) bullseye: open forky: resolved (fixed in 143.0.7499.40-1) sid: resolved (fixed in 143.0.7499.40-1) trixie

CVE-2025-12429 [HIGH] CVE-2025-12429: chromium - Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allow... Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.59-1) sid: resolved (fixed in 142.0.7444.59-1) trixie:

CVE-2025-13226 [HIGH] CVE-2025-13226: chromium - Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote at... Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.59-1) sid: resolved (fixed in 142.0.7444.59-1) trixie: resolve

CVE-2025-12437 [HIGH] CVE-2025-12437: chromium - Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a rem... Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444

CVE-2025-8576 [HIGH] CVE-2025-8576: chromium - Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a r... Use after free in Extensions in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 139.0.7258.66-1~deb12u1) bullseye: open forky: resolved (fixed in 139.0.7258.66-1) sid: resolved (fixed in 139.0.7258.66-1)

CVE-2025-3619 [HIGH] CVE-2025-3619: chromium - Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.9... Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) Scope: local bookworm: resolved (fixed in 135.0.7049.95-1~deb12u1) bullseye: open forky: resolved (fixed in 135.0.7049.95-1) sid: resolved (fixed in 135.0.704

CVE-2025-5958 [HIGH] CVE-2025-5958: chromium - Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remot... Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 137.0.7151.103-1~deb12u1) bullseye: open forky: resolved (fixed in 137.0.7151.103-1) sid: resolved (fixed in 137.0.7151.103-1) trixie: re

CVE-2025-0762 [HIGH] CVE-2025-0762: chromium - Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a re... Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 132.0.6834.159-1~deb12u1) bullseye: open forky: resolved (fixed in 132.0.6834.159-1) sid: resolved (fixed in 132.0.6834.159-1

CVE-2025-8578 [HIGH] CVE-2025-8578: chromium - Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote ... Use after free in Cast in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 139.0.7258.66-1~deb12u1) bullseye: open forky: resolved (fixed in 139.0.7258.66-1) sid: resolved (fixed in 139.0.7258.66-1) trixie: resol

CVE-2025-8901 [HIGH] CVE-2025-8901: chromium - Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a ... Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 139.0.7258.127-1~deb12u1) bullseye: open forky: resolved (fixed in 139.0.7258.127-1) sid: resolved (fixed in 139.0.7258.127-1) trixi

CVE-2025-3074 [MEDIUM] CVE-2025-3074: chromium - Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.5... Inappropriate implementation in Downloads in Google Chrome prior to 135.0.7049.52 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 135.0.7049.52-1~deb12u1) bullseye: open forky: resolved (fixed in 135.0.7049.52-1) sid: resolved (fixed in 135.0.7049.52-1) trixie: res

CVE-2025-12729 [MEDIUM] CVE-2025-12729: chromium - Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142... Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 142.0.7444.134-1~deb12u1) bullseye: open forky: resolved (fixed i

CVE-2025-12433 [MEDIUM] CVE-2025-12433: chromium - Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allow... Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 142.0.7444.59-1~deb12u1) bullseye: open forky: resolved (fixed in 142.0.7444.59-1) sid: resolved (fixed in 142.0.7444.59-1)

CVE-2025-0448 [MEDIUM] CVE-2025-0448: chromium - Inappropriate implementation in Compositing in Google Chrome prior to 132.0.6834... Inappropriate implementation in Compositing in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 132.0.6834.83-1~deb12u1) bullseye: open forky: resolved (fixed in 132.0.6834.83-1) sid: resolved (fixed in 132.0.6834.83-1) trixie: r

CVE-2025-8580 [MEDIUM] CVE-2025-8580: chromium - Inappropriate implementation in Filesystems in Google Chrome prior to 139.0.7258... Inappropriate implementation in Filesystems in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 139.0.7258.66-1~deb12u1) bullseye: open forky: resolved (fixed in 139.0.7258.66-1) sid: resolved (fixed in 139.0.7258.66-1) trixie: r

CVE-2025-0996 [MEDIUM] CVE-2025-0996: chromium - Inappropriate implementation in Browser UI in Google Chrome on Android prior to ... Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 133.0.6943.98-1~deb12u1) bullseye: open forky: resolved (fixed in 133.0.6943.98-1) sid: resolved (