Multiple security vulnerabilities in Chromium, including several high-severity issues (e.g., CVE-2026-5272 with CVSS 8.8), could lead to arbitrary code execution, denial of service, or information disclosure. Affected versions are Google Chrome prior to 146.0.7680.177. The fixed version is 146.0.7680.177 for Debian distributions bookworm and trixie.
[SECURITY] [DSA 6192-1] chromium security update To : debian-security-announce@lists.debian.org Subject : [SECURITY] [DSA 6192-1] chromium security update From : Andres Salomon < dilinger@debian.org > Date : Fri, 03 Apr 2026 00:39:00 +0000 Message-id : < [🔎] E1w8SYu-0000000Fw2A-0DIj@seger.debian.org > Reply-to : debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6192-1 security@debian.org https://www.debian.org/security/ Andres Salomon April 02, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2026-5272 CVE-2026-5273 CVE-2026-5274 CVE-2026-5275 CVE-2026-5276 CVE-2026-5277 CVE-2026-5278 CVE-2026-5279 CVE-2026-5280 CVE-2026-5281 CVE-2026-5282 CVE-2026-5283 CVE-2026-5284 CVE-2026-5285 CVE-2026-5286 CVE-2026-5287 CVE-2026-5288 CVE-2026-5289 CVE-2026-5290 CVE-2026-5291 CVE-2026-5292 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 146.0.7680.177-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in version 146.0.7680.177-1~deb13u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmnPC/wACgkQZF0CR8Nu djfejg//Qz4ChcSR++CdM3g0ipXtCIlEiKvFzKSYU2Mi3djeA4TEfn733YQ/452S OMWCl1vzeQUt91Gtca5MFz6srE/Y8nhi2fvoj5pJGTxU5AQybBTtaq0NwfGvHq/A hveV8ONiZWApLJxnb1m4GKE0v4QCLCNC/hBjTgtt6sOGaNYqZj/v0e6/wq2282mt 78For/7uj1qD9zDazORspXC0lkqMvxbj/mLXdjyuyIXIF17S2+GIiPfUrc5H9iMM kx5zLCll7jetI5YqUbeb3yef9/SYDtKJ4Tt+VtYWVbxdfwit77QjVx5eMo9ogVji d4SCkGn6Gv5Bl2ZM0fPgfk+4aTG9jFnyOw7Sjd0dYNusmsCjqwM5OOYhmaS7Mimx YYJfNbMIgCPF+0zNNJZxRBRq7ctNyKDNmWgoCNSwbmz6G9mz6s5iEP1CMuM0lObL AcritkzAlzt8nDoGQyk9zeaanM9bC2f8O5wlDOprLOURsO1Q424vwjGRl9zEVdoz HpXUiPXM4ziYx+Yts5OOLoTXzyr40Al+V7kVTVLzXdch82z6/NZy4wk6dHYml2eG DVL8HeuwI7f0mhuOxMhtc0whjLR1752c5upSaMpPKUWA/nMspvD1IQllW7URkdB6 ceQwvG0QFBYdeDnMagiKpeZeVPxEYbMwLMPP3wA49Pkwf3Imfck= =1S68 -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Andres Salomon (on-list) Andres Salomon (off-list) Prev by Date: [SECURITY] [DSA 6191-1] gst-plugins-ugly1.0 security update Previous by thread: [SECURITY] [DSA 6191-1] gst-plugins-ugly1.0 security update Index(es): Date Thread