Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 42: Chromium High CVE-2025-14765 Out of Bounds Security Risks

fedora
Calendar Grey December 20, 2025
Dist Fedora Esm H88
CVE-2025-14765 and CVE-2025-14766 are critical in Chromium's update for Fedora 42, targeting serious security flaws.
Update to 143.0.7499.146 * High CVE-2025-14765: Use after free in WebGPU * High CVE-2025-14766: Out of bounds read and write in V8 * Force dark mode when auto dark mode web cont...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 143.0.7499.146 * High CVE-2025-14765: Use after free in WebGPU * High CVE-2025-14766: Out of bounds read and write in V8 * Force dark mode when auto dark mode web content is on

Topics%20covered

Topics Covered

security advisory fedora high out-of-bounds use-after-free Chromium

Change Log

* Wed Dec 17 2025 Than Ngo - 143.0.7499.146-1 - Update to 143.0.7499.146 * High CVE-2025-14765: Use after free in WebGPU * High CVE-2025-14766: Out of bounds read and write in V8 - Force dark mode when auto dark mode web content is on - Remove omnibox-next-Improve-cutout-mouse-handling-for-Wayla patch, as it's merged

References


[ 1 ] Bug #2423106 - CVE-2025-14765 chromium: Chromium: Use after free in WebGPU allows remote attacker to exploit heap corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2423106 [ 2 ] Bug #2423107 - CVE-2025-14765 chromium: Chromium: Use after free in WebGPU allows remote attacker to exploit heap corruption [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2423107 [ 3 ] Bug #2423110 - CVE-2025-14766 chromium: Google Chrome V8: Out-of-bounds read and write leads to heap corruption [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2423110 [ 4 ] Bug #2423111 - CVE-2025-14766 chromium: Google Chrome V8: Out-of-bounds read and write leads to heap corruption [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2423111

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-0805619c28' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 42
Version: 143.0.7499.146
Release: 1.fc42
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora high out-of-bounds use-after-free Chromium

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here