Debian Chromium vulnerabilities

CVE-2026-4461 [HIGH] CVE-2026-4461: chromium - Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allo... Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in 146.0.7680.153-1)

CVE-2026-5863 [HIGH] CVE-2026-5863: chromium - Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allow... Inappropriate implementation in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-5860 [HIGH] CVE-2026-5860: chromium - Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remot... Use after free in WebRTC in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-4675 [HIGH] CVE-2026-4675: chromium - Heap buffer overflow in WebGL in Google Chrome prior to 146.0.7680.165 allowed a... Heap buffer overflow in WebGL in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.164-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.164-1) sid: resolved (fixed in 146.0.7680.164-1) tri

CVE-2026-3541 [HIGH] CVE-2026-3541: chromium - Inappropriate implementation in CSS in Google Chrome prior to 145.0.7632.159 all... Inappropriate implementation in CSS in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 145.0.7632.159-1~deb12u1) bullseye: open forky: resolved (fixed in 145.0.7632.159-1) sid: resolved (fixed in 145.0.7632.159-

CVE-2026-3918 [HIGH] CVE-2026-3918: chromium - Use after free in WebMCP in Google Chrome prior to 146.0.7680.71 allowed a remot... Use after free in WebMCP in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.71-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.71-1) sid: resolved (fixed in 146.0.7680.71-1) trixie: resol

CVE-2026-4678 [HIGH] CVE-2026-4678: chromium - Use after free in WebGPU in Google Chrome prior to 146.0.7680.165 allowed a remo... Use after free in WebGPU in Google Chrome prior to 146.0.7680.165 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.164-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.164-1) sid: resolved (fixed in 146.0.7680.164-1) trixi

CVE-2026-4448 [HIGH] CVE-2026-4448: chromium - Heap buffer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a... Heap buffer overflow in ANGLE in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in 146.0.7680.153-1) trix

CVE-2026-5859 [HIGH] CVE-2026-5859: chromium - Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remo... Integer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-0899 [HIGH] CVE-2026-0899: chromium - Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowe... Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 144.0.7559.59-1~deb12u1) bullseye: open forky: resolved (fixed in 144.0.7559.59-1) sid: resolved (fixed in 144.0.7559.59-1) tr

CVE-2026-4439 [HIGH] CVE-2026-4439: chromium - Out of bounds memory access in WebGL in Google Chrome on Android prior to 146.0.... Out of bounds memory access in WebGL in Google Chrome on Android prior to 146.0.7680.153 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in

CVE-2026-4441 [HIGH] CVE-2026-4441: chromium - Use after free in Base in Google Chrome prior to 146.0.7680.153 allowed a remote... Use after free in Base in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in 146.0.7680.153-1) trixie:

CVE-2026-4445 [HIGH] CVE-2026-4445: chromium - Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remo... Use after free in WebRTC in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in 146.0.7680.153-1) trixie: r

CVE-2026-4451 [HIGH] CVE-2026-4451: chromium - Insufficient validation of untrusted input in Navigation in Google Chrome prior ... Insufficient validation of untrusted input in Navigation in Google Chrome prior to 146.0.7680.153 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixe

CVE-2026-5858 [HIGH] CVE-2026-5858: chromium - Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a ... Heap buffer overflow in WebML in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-5909 [HIGH] CVE-2026-5909: chromium - Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remo... Integer overflow in Media in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. (Chromium security severity: Low) Scope: local bookworm: open bullseye: open forky: open sid: resolved (fixed in 147.0.7727.55-1) trixie: open

CVE-2026-0908 [HIGH] CVE-2026-0908: chromium - Use after free in ANGLE in Google Chrome prior to 144.0.7559.59 allowed a remote... Use after free in ANGLE in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low) Scope: local bookworm: resolved (fixed in 144.0.7559.59-1~deb12u1) bullseye: open forky: resolved (fixed in 144.0.7559.59-1) sid: resolved (fixed in 144.0.7559.59-1) trixie: resolve

CVE-2026-4462 [HIGH] CVE-2026-4462: chromium - Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a r... Out of bounds read in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.153-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.153-1) sid: resolved (fixed in 146.0.7680.153-1) trixi

CVE-2026-5284 [HIGH] CVE-2026-5284: chromium - Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote... Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 146.0.7680.177-1~deb12u1) bullseye: open forky: resolved (fixed in 146.0.7680.177-1) sid: resolved (fixed in 1

CVE-2026-0628 [HIGH] CVE-2026-0628: chromium - Insufficient policy enforcement in WebView tag in Google Chrome prior to 143.0.7... Insufficient policy enforcement in WebView tag in Google Chrome prior to 143.0.7499.192 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 143.0.7499.192-1~deb12u1) bullseye: open forky: r