Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 44 CEF Major Update for Heap Overflow and Use After Free Fixes

fedora
Calendar Grey April 25, 2026
Dist Fedora Esm H88
High security advisories for Fedora 44 CEF address multiple critical vulnerabilities requiring immediate updates.
Update to 146.0.7680.177 + cef-146.0.11+g8e1262b High CVE-2026-5273: Use after free in CSS High CVE-2026-5272: Heap buffer overflow in GPU High CVE-2026-5274: Integer overflow in C...

Summary

CEF is an embeddable build of Chromium, powered by WebKit (Blink).

Update Information:

Update to 146.0.7680.177 + cef-146.0.11+g8e1262b High CVE-2026-5273: Use after free in CSS High CVE-2026-5272: Heap buffer overflow in GPU High CVE-2026-5274: Integer overflow in Codecs High CVE-2026-5275: Heap buffer overflow in ANGLE High CVE-2026-5276: Insufficient policy enforcement in WebUSB High CVE-2026-5277: Integer overflow in ANGLE High CVE-2026-5278: Use after free in Web MIDI High CVE-2026-5279: Object corruption in V8 High CVE-2026-5280: Use after free in WebCodecs High CVE-2026-5281: Use after free in Dawn High CVE-2026-5282: Out of bounds read in WebCodecs High CVE-2026-5283: Inappropriate implementation in ANGLE High CVE-2026-5284: Use after free in Dawn High CVE-2026-5285: Use after free in WebGL High CVE-2026-5286: Use after free in Dawn High CVE-2026-5287: Use after free in PDF High CVE-2026-5288: Use after free in WebView High CVE-2026-5289: Use after free in Navigation High CVE-2026-5290: Use after free in Compositing Medium CVE-2026-5291: In...

Topics%20covered

Topics Covered

security advisory fedora heap overflow high integer overflow use-after-free

Change Log

* Wed Apr 15 2026 Hoshino Lina - 146.0.11^chromium146.0.7680.177-1 - Update to cef-146.0.11+g8e1262b * Wed Apr 15 2026 Than Ngo - 146.0.9^chromium146.0.7680.177-1 - Update to 146.0.7680.177 - * High CVE-2026-5273: Use after free in CSS - * High CVE-2026-5272: Heap buffer overflow in GPU - * High CVE-2026-5274: Integer overflow in Codecs - * High CVE-2026-5275: Heap buffer overflow in ANGLE - * High CVE-2026-5276: Insufficient policy enforcement in WebUSB - * High CVE-2026-5277: Integer overflow in ANGLE - * High CVE-2026-5278: Use after free in Web MIDI - * High CVE-2026-5279: Object corruption in V8 - * High CVE-2026-5280: Use after free in WebCodecs - * High CVE-2026-5281: Use after free in Dawn - * High CVE-2026-5282: Out of bounds read in WebCodecs - * High CVE-2026-5283: Inappropriate implementation in ANGLE - * High CVE-2026-5284: Use after free in Dawn - * High CVE-2026-5285: Use after free in WebGL - * High CVE-2026-5286: Use after free in Dawn - * High CVE-2026-5287: Use after free in PDF - * High CVE-2026-5288: Use after free in WebView - * High CVE-2026-5289: Use after free in Navigation - * High CVE-2026-5290: Use after free in Compositing - * Medium CVE-2026-5291: Inappropriate implementation in WebGL - * Medium CVE-2026-5292: Out of bounds read in WebCodecs - removed ppc64le-build-error patch that is merged in upstream * Tue Apr 14 2026 Hoshino Lina - 146.0.9^chromium146.0.7680.164-2 - Fix 136 ABI backwards compat breakage * Tue Mar 31 2026 Hoshino Lina - 146.0.9^chromium146.0.7680.164-1 - Update to cef-146.0.9+g3ca6a87 * Wed Mar 25 2026 Than Ngo - 146.0.6^chromium146.0.7680.164-1 - Update to 146.0.7680.164 - * High CVE-2026-4673: Heap buffer overflow in WebAudio - * High CVE-2026-4674: Out of bounds read in CSS - * High CVE-2026-4675: Heap buffer overflow in WebGL - * High CVE-2026-4676: Use after free in Dawn - * High CVE-2026-4677: Out of bounds read in WebAudio - * High CVE-2026-4678: Use after free in WebGPU - * High CVE-2026-4679: Integer overflow in Fonts - * High CVE-2026-4680: Use after free in FedCM * Wed Mar 25 2026 Than Ngo - 146.0.6^chromium146.0.7680.153-1 - Update to 146.0.7680.153 - * CVE-2026-4439: Out of bounds memory access in WebGL - * CVE-2026-4440: Out of bounds read and write in WebGL - * CVE-2026-4441: Use after free in Base - * CVE-2026-4442: Heap buffer overflow in CSS - * CVE-2026-4443: Heap buffer overflow in WebAudio - * CVE-2026-4444: Stack buffer overflow in WebRTC - * CVE-2026-4445: Use after free in WebRTC - * CVE-2026-4446: Use after free in WebRTC - * CVE-2026-4447: Inappropriate implementation in V8 - * CVE-2026-4448: Heap buffer overflow in ANGLE - * CVE-2026-4449: Use after free in Blink - * CVE-2026-4450: Out of bounds write in V8 - * CVE-2026-4451: Insufficient validation of untrusted input in Navigation - * CVE-2026-4452: Integer overflow in ANGLE - * CVE-2026-4453: Integer overflow in Dawn - * CVE-2026-4454: Use after free in Network - * CVE-2026-4455: Heap buffer overflow in PDFium - * CVE-2026-4456: Use after free in Digital Credentials API - * CVE-2026-4457: Type Confusion in V8 - * CVE-2026-4458: Use after free in Extensions - * CVE-2026-4459: Out of bounds read and write in WebAudio - * CVE-2026-4460: Out of bounds read in Skia - * CVE-2026-4461: Inappropriate implementation in V8 - * CVE-2026-4462: Out of bounds read in Blink - * CVE-2026-4463: Heap buffer overflow in WebRTC - * CVE-2026-4464: Integer overflow in ANGLE * Wed Mar 25 2026 Than Ngo - 146.0.6^chromium146.0.7680.80-1 - Update to 146.0.7680.80 - * CVE-2026-3909: Out of bounds write in Ski * Wed Mar 25 2026 Than Ngo - 146.0.6^chromium146.0.7680.75-1 - Update to 146.0.7680.75 - * CVE-2026-3909: Out of bounds write in Skia - * CVE-2026-3910: Inappropriate implementation in V8 * Wed Mar 25 2026 Than Ngo - 146.0.6^chromium146.0.7680.71-1 - Update to 146.0.7680.71 - * CVE-2026-3913: Heap buffer overflow in WebML - * CVE-2026-3914: Integer overflow in WebML - * CVE-2026-3915: Heap buffer overflow in WebML - * CVE-2026-3916: Out of bounds read in Web Speech - * CVE-2026-3917: Use after free in Agents - * CVE-2026-3918: Use after free in WebMCP - * CVE-2026-3919: Use after free in Extensions - * CVE-2026-3920: Out of bounds memory access in WebML - * CVE-2026-3921: Use after free in TextEncoding - * CVE-2026-3922: Use after free in MediaStream - * CVE-2026-3923: Use after free in WebMIDI - * CVE-2026-3924: Use after free in WindowDialog - * CVE-2026-3925: Incorrect security UI in LookalikeChecks - * CVE-2026-3926: Out of bounds read in V8 - * CVE-2026-3927: Incorrect security UI in PictureInPicture - * CVE-2026-3928: Insufficient policy enforcement in Extensions - * CVE-2026-3929: Side-channel information leakage in ResourceTiming - * CVE-2026-3930: Unsafe navigation in Navigation - * CVE-2026-3931: Heap buffer overflow in Skia - * CVE-2026-3932: Insufficient policy enforcement in PDF - * CVE-2026-3934: Insufficient policy enforcement in ChromeDriver - * CVE-2026-3935: Incorrect security UI in WebAppInstalls - * CVE-2026-3936: Use after free in WebView - * CVE-2026-3937: Incorrect security UI in Downloads - * CVE-2026-3938: Insufficient policy enforcement in Clipboard - * CVE-2026-3939: Insufficient policy enforcement in PDF - * CVE-2026-3940: Insufficient policy enforcement in DevTools - * CVE-2026-3941: Insufficient policy enforcement in DevTools - * CVE-2026-3942: Incorrect security UI in PictureInPicture - Fix build errors - Refresh patches for new upstream changes - Remove patches merged by upstream - Hoshino Lina: Update to cef-146.0.6+g68649e2 (rhbz#2450085)

References


[ 1 ] Bug #2454750 - cef-146.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=2454750

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-83fdfd7e0e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cef
Product: Fedora 44
Version: 146.0.11^chromium146.0.7680.177
Release: 2.fc44
URL: https://bitbucket.org/chromiumembedded/cef
Summary: Chromium Embedded Framework

Topics%20covered

Topics Covered

security advisory fedora heap overflow high integer overflow use-after-free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here