Fedora 40 Chromium Security Issue: Heap Overflow and Use After Free
fedora
April 23, 2025
Update to 135.0.7049.95 CVE-2025-3619: Heap buffer overflow in Codecs CVE-2025-3620: Use after free in USB
Summary
Chromium is an open-source web browser, powered by WebKit (Blink).
Update Information:
Update to 135.0.7049.95 CVE-2025-3619: Heap buffer overflow in Codecs CVE-2025-3620: Use after free in USB
Topics Covered
Change Log
* Wed Apr 16 2025 Than Ngo
References
[ 1 ] Bug #2360898 - CVE-2025-3620 chromium: Use after free in USB [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2360898
[ 2 ] Bug #2360899 - CVE-2025-3620 chromium: Use after free in USB [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2360899
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-7827e4feac' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: chromium
Product: Fedora 40
Version: 135.0.7049.95
Release: 1.fc40
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!