Fedora 43 Chromium Critical Heap Buffer Overflow CVE-2026-5858 Update
fedora
April 14, 2026
Update to 147.0.7727.55 Critical CVE-2026-5858: Heap buffer overflow in WebML Critical CVE-2026-5859: Integer overflow in WebML High CVE-2026-5860: Use after free in WebRTC High CV...
Summary
Chromium is an open-source web browser, powered by WebKit (Blink).
Update Information:
Update to 147.0.7727.55 Critical CVE-2026-5858: Heap buffer overflow in WebML Critical CVE-2026-5859: Integer overflow in WebML High CVE-2026-5860: Use after free in WebRTC High CVE-2026-5861: Use after free in V8 High CVE-2026-5862: Inappropriate implementation in V8 High CVE-2026-5863: Inappropriate implementation in V8 High CVE-2026-5864: Heap buffer overflow in WebAudio High CVE-2026-5865: Type Confusion in V8 High CVE-2026-5866: Use after free in Media High CVE-2026-5867: Heap buffer overflow in WebML High CVE-2026-5868: Heap buffer overflow in ANGLE High CVE-2026-5869: Heap buffer overflow in WebML High CVE-2026-5870: Integer overflow in Skia High CVE-2026-5871: Type Confusion in V8 High CVE-2026-5872: Use after free in Blink High CVE-2026-5873: Out of bounds read and write in V8 Medium CVE-2026-5874: Use after free in PrivateAI Medium CVE-2026-5875: Policy bypass in Blink Medium CVE-2026-5876: Side-channel information leakage in Navigation Medium CVE-2026-...
Topics Covered
Change Log
* Wed Apr 8 2026 Than Ngo
References
[ 1 ] Bug #2457163 - CVE-2026-5858 CVE-2026-5859 CVE-2026-5860 CVE-2026-5861 CVE-2026-5874 CVE-2026-5875 CVE-2026-5876 CVE-2026-5894 chromium: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2457163
[ 2 ] Bug #2457164 - CVE-2026-5858 CVE-2026-5859 CVE-2026-5860 CVE-2026-5861 CVE-2026-5874 CVE-2026-5875 CVE-2026-5876 CVE-2026-5894 chromium: various flaws [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2457164
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-952f3c3d9e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: chromium
Product: Fedora 43
Version: 147.0.7727.55
Release: 1.fc43
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!