Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Fedora 44 Chromium Important Heap Integer Overflow Issues 2026-885a3f8c70

fedora
Calendar Grey May 18, 2026
Dist Fedora Esm H88
Critical updates for Fedora 44 Chromium address multiple serious flaws, including heap and integer overflows. Stay safe.
Update to 148.0.7778.167 CVE-2026-8509: Heap buffer overflow in WebML CVE-2026-8510: Integer overflow in Skia CVE-2026-8511: Use after free in UI CVE-2026-8512: Use after free in F...

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update Information:

Update to 148.0.7778.167 CVE-2026-8509: Heap buffer overflow in WebML CVE-2026-8510: Integer overflow in Skia CVE-2026-8511: Use after free in UI CVE-2026-8512: Use after free in FileSystem CVE-2026-8513: Use after free in Input CVE-2026-8514: Use after free in Aura CVE-2026-8515: Use after free in HID CVE-2026-8516: Insufficient validation of untrusted input in DataTransfer CVE-2026-8517: Object lifecycle issue in WebShare CVE-2026-8518: Use after free in Blink CVE-2026-8519: Integer overflow in ANGLE CVE-2026-8520: Race in Payments CVE-2026-8521: Use after free in Tab Groups CVE-2026-8522: Use after free in Downloads CVE-2026-8523: Use after free in Mojo CVE-2026-8558: Out of bounds write in Fonts CVE-2026-8524: Out of bounds write in WebAudio CVE-2026-8525: Heap buffer overflow in ANGLE CVE-2026-8526: Out of bounds write in WebRTC CVE-2026-8527: Insufficient validation of untrusted input in Downloads CVE-2026-8528: Insufficient validation of untrusted input i...

Change Log

* Wed May 13 2026 Than Ngo - 148.0.7778.167-1 - Update to 148.0.7778.167

References


[ 1 ] Bug #2468370 - CVE-2026-7896 CVE-2026-7897 CVE-2026-7898 CVE-2026-7899 CVE-2026-7900 CVE-2026-7901 CVE-2026-7902 CVE-2026-7903 CVE-2026-7904 CVE-2026-7905 CVE-2026-7906 CVE-2026-7907 CVE-2026-7908 CVE-2026-7909 CVE-2026-7910 ... chromium: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2468370 [ 2 ] Bug #2477796 - CVE-2026-8509 CVE-2026-8510 CVE-2026-8511 CVE-2026-8512 CVE-2026-8513 CVE-2026-8514 CVE-2026-8515 CVE-2026-8516 CVE-2026-8517 CVE-2026-8518 CVE-2026-8519 CVE-2026-8520 CVE-2026-8521 CVE-2026-8522 CVE-2026-8523 ... chromium: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2477796

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-885a3f8c70' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: chromium
Product: Fedora 44
Version: 148.0.7778.167
Release: 1.fc44
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here