Multiple critical vulnerabilities in Chromium (CVE-2026-6919, CVE-2026-6920, CVSS 9.6; CVE-2026-6921, CVSS 8.3) could lead to arbitrary code execution, denial of service, or information disclosure. Affected versions include Google Chrome prior to version 147.0.7727.116. The Debian project has released fixed packages for its distributions, and users must upgrade to Chromium version 147.0.7727.116 or later to mitigate these risks.
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6230-1] chromium security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6230-1] chromium security update From: Andres Salomon <dilinger@debian.org> Date: Sat, 25 Apr 2026 00:09:14 +0000 Message-id: <[🔎] E1wGQaA-00000005ysu-3gBJ@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6230-1 security@debian.org https://www.debian.org/security/ Andres Salomon April 24, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2026-6919 CVE-2026-6920 CVE-2026-6921 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 147.0.7727.116-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in version 147.0.7727.116-1~deb13u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmnsBWAACgkQZF0CR8Nu djccCw//Q5RzXNAXPjydMPPrxC1S2DqETcC+sv/yjyJ4C78R9F36h2J6y9vQVSk1 cerK2zUJ7Zybe7woEKUO5K/oLWDSbfaOYYnprt4Ns3S36T/LlGYwraawBZSvFJ/B BVAxKSRMWoK+Tea+wvr7RGWU3r9nuqJ1TmvjDOGZQ1y5JaEDJiIjxGXP211ptvIe JADWXjWbZLH/CTCSoSOw4KpajFktytAdNm04H+U4vhvS+kywWh3JITkjy2hEN4qQ 7Wny/l89MX3zM0H2WcVTevYkLS1Bbmwnj9wNbkQwoW44TL3tb1BWS45LeV0rpLOb Su2Lp2W8+UqbufTrHCngNQA7AWKRKoXAauJcnVdL2BJ0vhATx5Sa0C64cPme84P4 SszIymi3jQcFp5HYtWRga9gqMkSC55YWga220ZKNdzgucaKWdoFXU3mZOUXfzmBl JuEpTjyzVOKT5ATkspoGHExmJBNHr/CiwySDHqI/1UWSNugmkbSS835BgY925Cgn XKqVlqpigqiSR3sc2Svut8hzW9yJSQxGKnvB47RP0gwnB8KrxIo6lv+eTsV3a6Iw 1kjuxoHUxXn9gW4C0icNAvWa5dMRYoIJ3qWkO/+C0ceDnvB7emEmLr7RPy+FApoq RSDnggeRvmXIJVjd5Yvg+BRkWLA/J5MwRsW2UWjo3eR1i9vrl14= =5mPi -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Andres Salomon (on-list) Andres Salomon (off-list) Prev by Date: [SECURITY] [DSA 6229-1] thunderbird security update Previous by thread: [SECURITY] [DSA 6229-1] thunderbird security update Index(es): Date Thread