Multiple high-severity security issues (CVE-2026-3536 through CVE-2026-3545) in Chromium, with CVSS scores up to 8.8, could lead to arbitrary code execution, denial of service, or information disclosure. Affected versions are Google Chrome builds prior to 145.0.7632.159 and 145.0.7632.160. The fixed version is 145.0.7632.159-1~deb12u1 for Debian Bookworm and 145.0.7632.159-1~deb13u1 for Debian Trixie.
[SECURITY] [DSA 6157-1] chromium security update To : debian-security-announce@lists.debian.org Subject : [SECURITY] [DSA 6157-1] chromium security update From : Andres Salomon < dilinger@debian.org > Date : Fri, 06 Mar 2026 06:43:55 +0000 Message-id : < [🔎] E1vyOuh-005qMK-1X@seger.debian.org > Reply-to : debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6157-1 security@debian.org https://www.debian.org/security/ Andres Salomon March 05, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2026-3536 CVE-2026-3537 CVE-2026-3538 CVE-2026-3539 CVE-2026-3540 CVE-2026-3541 CVE-2026-3542 CVE-2026-3543 CVE-2026-3544 CVE-2026-3545 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 145.0.7632.159-1~deb12u1. For the stable distribution (trixie), these problems have been fixed in version 145.0.7632.159-1~deb13u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEUAUk+X1YiTIjs19qZF0CR8NudjcFAmmqJxoACgkQZF0CR8Nu djdiCg/+J9QfClG4h0dr476mwssyUp55+Smmg31G48YDdUgja4pdMPJXR72YTY6r z5CNE4jjH/t61sUts5Rne2WjyQei7N+ZB8kcL8FWo67M+NnV/kcehiSaJ/WMhzup jsX7OP13/qk5rcrq4T6tHFZYqHXU1VPl0J5HB0b/plnxNc1MOk1oTBVwpTVn2BVU mN2T+YzIO1rwMuX+CJGEWV8Zmb8sgKG7Y+lH2VtOSvUgvAx2vRfGXiUTDXZPROIt gg8fEiXP9BzXMqWFZHwP7i1EoPIPn0qMrAtgA1nQIJ/3tX/RRKaJQXW13ZYt5pzy 1nqF6BVDODLaZd0OZNGcoWxfDae27uMlqUfG2Gv+/UcmWdhj83k0jmzjxYN9MkbO AZk39KozJeGYjMG/3Q8jJRJ39iYL3UnezB6kE98KN461PpayLOPwsgUSYlksXoYo 77c4qCBkmvbwAaiYx59qsSlMWk+iNOPjFNewqYGXKQPLlVBaldRUX+IFnhDogEaO Me1ojz26jvplYQf9X3e+f8qnWfiRPgkmwlTcktt3CvzAMfjASZuVz33YEb+vcohh 2GFQCWB5JAlXXf5h6szEqdqUJO0TG8nrfSHLXAnzF1/Q7aZO9vqKIf0JH2lb3Opb 9zxP9LyUZ95kAOHRA4Sw2L+ro/NPFsvTKnVdCNLW2YZ2NytvETQ= =DbFo -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Andres Salomon (on-list) Andres Salomon (off-list) Prev by Date: [SECURITY] [DSA 6156-1] gimp security update Previous by thread: [SECURITY] [DSA 6156-1] gimp security update Index(es): Date Thread