Fedora 42: Chromium High Insufficient Policy Enforcement CVE-2026-0628
fedora
January 12, 2026
Update to 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel1...
Summary
Chromium is an open-source web browser, powered by WebKit (Blink).
Update Information:
Update to 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1
Change Log
* Wed Jan 7 2026 Than Ngo
References
[ 1 ] Bug #2425338 - Please re-enable CFI build option
https://bugzilla.redhat.com/show_bug.cgi?id=2425338
[ 2 ] Bug #2425439 - Chromium not updated RHEL 10
https://bugzilla.redhat.com/show_bug.cgi?id=2425439
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-540f5a89d1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: chromium
Product: Fedora 42
Version: 143.0.7499.192
Release: 1.fc42
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!