Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 43: Important Advisory on cef High Policy Enforcement CVE-2026-0628

fedora
Calendar Grey January 21, 2026
Dist Fedora Esm H88
Update to cef version 143.0.7499.192 on Fedora 43 addresses high severity policy enforcement issue in WebView.
Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag

Summary

CEF is an embeddable build of Chromium, powered by WebKit (Blink).

Update Information:

Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag

Topics%20covered

Topics Covered

security advisory fedora high policy enforcement webview cef

Change Log

* Fri Jan 9 2026 Than Ngo - 143.0.13^chromium143.0.7499.192-1 - Update to 143.0.7499.192 [rhbz#2427842] - * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1

References


[ 1 ] Bug #2427842 - cef-143.0.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2427842

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-77e3579a49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cef
Product: Fedora 43
Version: 143.0.13^chromium143.0.7499.192
Release: 1.fc43
URL: https://bitbucket.org/chromiumembedded/cef
Summary: Chromium Embedded Framework

Topics%20covered

Topics Covered

security advisory fedora high policy enforcement webview cef

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here