Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

openSUSE 2026-0041-1 chromium Critical Memory Integrity Breach

opensuse
Calendar Grey February 9, 2026
Dist Opensuse Esm H88
Latest openSUSE update for chromium addresses important vulnerabilities related to heap corruption and type confusion.
An update that fixes two vulnerabilities is now available.

Description

This update for chromium fixes the following issues:

- Chromium 144.0.7559.132 (boo#1257650)

* CVE-2026-1861: Heap buffer overflow in libvpx in Google Chrome prior

to 144.0.7559.132 allowed a remote attacker to potentially exploit

heap corruption via a crafted HTML page.

* CVE-2026-1862: Type Confusion in V8 in Google Chrome prior to

144.0.7559.132 allowed a remote attacker to potentially exploit heap

corruption via a crafted HTML page.

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP7:

zypper in -t patch openSUSE-2026-41=1

Package List

- openSUSE Backports SLE-15-SP7 (aarch64 ppc64le x86_64):

chromedriver-144.0.7559.132-bp157.2.109.1

chromium-144.0.7559.132-bp157.2.109.1

References

https://www.suse.com/security/cve/CVE-2026-1861.html

https://www.suse.com/security/cve/CVE-2026-1862.html

https://bugzilla.suse.com/1257650

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:0041-1
Rating: important
Affected Products: openSUSE Backports SLE-15-SP7

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here