Fedora 42: CEF High CVE-2026-0628 Insufficient Policy Enforcement Advisory
fedora
January 21, 2026
Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag
Summary
CEF is an embeddable build of Chromium, powered by WebKit (Blink).
Update Information:
Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag
Topics Covered
Change Log
* Fri Jan 9 2026 Than Ngo
References
[ 1 ] Bug #2427842 - cef-143.0.14 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2427842
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2a94cc43d9' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: cef
Product: Fedora 42
Version: 143.0.13^chromium143.0.7499.192
Release: 1.fc42
Summary: Chromium Embedded Framework
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!