Alerts This Week
Warning Icon 1 548
Alerts This Week
Warning Icon 1 548

Fedora 44 Chromium Critical Heap Overflow Use After Free CVE-2026-12007

fedora
Calendar Grey June 17, 2026
Dist Fedora Esm H88
Stay informed about important Chromium updates for Fedora 44 to enhance your system's security against multiple critical vulnerabilities.
Update to 149.0.7827.114 CVE-2026-12007: Use after free Core CVE-2026-12008: Use after free DigitalCredentials CVE-2026-12009: Insufficient validation of untrusted input Accessibil...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 149.0.7827.114 CVE-2026-12007: Use after free Core CVE-2026-12008: Use after free DigitalCredentials CVE-2026-12009: Insufficient validation of untrusted input Accessibility CVE-2026-12010: Heap buffer overflow GPU CVE-2026-12011: Use after free WebMIDI CVE-2026-12012: Use after free Network CVE-2026-12013: Use after free Media CVE-2026-12014: Use after free Cast CVE-2026-12015: Use after free Autofill CVE-2026-12016: Insufficient validation of untrusted input DevTools CVE-2026-12017: Insufficient validation of untrusted input Extensions CVE-2026-12018: Inappropriate implementation Mojo CVE-2026-12019: Out of bounds write Codecs CVE-2026-12020: Use after free Autofill CVE-2026-12022: Race Safe Browsing CVE-2026-12023: Use after free GPU CVE-2026-12024: Insufficient policy enforcement DevTools CVE-2026-12025: Insufficient validation of untrusted input Network CVE-2026-12026: Out of bounds read Video CVE-2026-12027: Insufficient policy ...

Topics%20covered

Topics Covered

security advisory fedora important heap overflow use-after-free insufficient validation

Change Log

* Fri Jun 12 2026 Than Ngo - 149.0.7827.114-1 - Update to 149.0.7827.114 * CVE-2026-12007: Use after free Core * CVE-2026-12008: Use after free DigitalCredentials * CVE-2026-12009: Insufficient validation of untrusted input Accessibility * CVE-2026-12010: Heap buffer overflow GPU * CVE-2026-12011: Use after free WebMIDI * CVE-2026-12012: Use after free Network * CVE-2026-12013: Use after free Media * CVE-2026-12014: Use after free Cast * CVE-2026-12015: Use after free Autofill * CVE-2026-12016: Insufficient validation of untrusted input DevTools * CVE-2026-12017: Insufficient validation of untrusted input Extensions * CVE-2026-12018: Inappropriate implementation Mojo * CVE-2026-12019: Out of bounds write Codecs * CVE-2026-12020: Use after free Autofill * CVE-2026-12022: Race Safe Browsing * CVE-2026-12023: Use after free GPU * CVE-2026-12024: Insufficient policy enforcement DevTools * CVE-2026-12025: Insufficient validation of untrusted input Network * CVE-2026-12026: Out of bounds read Video * CVE-2026-12027: Insufficient policy enforcement Headless * CVE-2026-12028: Use after free GPU * CVE-2026-12029: Use after free Video * CVE-2026-12030: Heap buffer overflow GPU * CVE-2026-12031: Inappropriate implementation Views * CVE-2026-12032: Inappropriate implementation Passwords * CVE-2026-12033: Out of bounds read VideoCapture * CVE-2026-12034: Insufficient validation of untrusted input Linux Toolkit Theming * CVE-2026-12035: Use after free Views - Disable AI Mode settings

References

Fedora Update Notification FEDORA-2026-59f46c195f 2026-06-17 08:41:51.002543+00:00 Name : chromium Product : Fedora 44 Version : 149.0.7827.114 Release : 1.fc44 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink).

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-59f46c195f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 44
Version: 149.0.7827.114
Release: 1.fc44
URL: http://www.chromium.org/Home
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory fedora important heap overflow use-after-free insufficient validation

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here