Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 906 articles for you...
89

Fedora 41 FEDORA-2025-e4b1668bdd critical: chromium use after free

Update to 138.0.7204.49 CVE-2025-6555: Use after free in Animation CVE-2025-6556: Insufficient policy enforcement in Loader CVE-2025-6557: Insufficient data validation in DevTools. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e4b1668bdd 2025-06-28 01:45:12.871378+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 138.0.7204.49 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 138.0.7204.49 CVE-2025-6555: Use after free in Animation CVE-2025-6556: Insufficient policy enforcement in Loader CVE-2025-6557: Insufficient data validation in DevTools -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 24 2025 Than Ngo - 138.0.7204.49-1 - Update to 138.0.7204.49 * CVE-2025-6555: Use after free in Animation * CVE-2025-6556: Insufficient policy enforcement in Loader * CVE-2025-6557: Insufficient data validation in DevTools -------------------------------------------------------------------------------- References: [ 1 ] Bug #2374686 - CVE-2025-6555 chromium: Chromium use after free vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374686 [ 2 ] Bug #2374687 - CVE-2025-6557 chromium: Chromium data validation vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374687 [ 3 ] Bug #2374688 - CVE-2025-6556 chromium: Chromium policy enforcement vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374688 [ 4 ] Bug #2374689 - CVE-2025-6555 chromium: Chromium use after freevulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374689 [ 5 ] Bug #2374690 - CVE-2025-6556 chromium: Chromium policy enforcement vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374690 [ 6 ] Bug #2374691 - CVE-2025-6557 chromium: Chromium data validation vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2374691 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e4b1668bdd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Fedora 41's latest Chromium release addresses critical security flaws such as buffer overflows and improper access control issues.. Fedora updates, Chromium fixes, Linux security, critical vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 28, 2025 Critical Fedora
87

Debian: DSA-5952-1 critical: chromium arbitrary code execution

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5952-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Andres Salomon June 27, 2025 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2025-6555 CVE-2025-6556 CVE-2025-6557 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 138.0.7204.49-1~deb12u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Significant vulnerabilities found in Chromium on Debian, posing risks of potential remote code execution, denial of service attacks, and information disclosure.. Debian Security, Chromium Update, System Vulnerability, Code Execution Issue, Information Disclosure. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 27, 2025 Critical Debian
89

Fedora 41: FEDORA-2025-4fed640c91 critical: chromium integer overflow

Update to 137.0.7151.119 * CVE-2025-6191: Integer overflow in V8 * CVE-2025-6192: Use after free in Profiler. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-4fed640c91 2025-06-22 01:13:34.506440+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 137.0.7151.119 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 137.0.7151.119 * CVE-2025-6191: Integer overflow in V8 * CVE-2025-6192: Use after free in Profiler -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 18 2025 Than Ngo - 137.0.7151.119-1 - Update to 137.0.7151.119 * CVE-2025-6191: Integer overflow in V8 * CVE-2025-6192: Use after free in Profiler -------------------------------------------------------------------------------- References: [ 1 ] Bug #2373778 - CVE-2025-6192 chromium: Chromium use after free [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2373778 [ 2 ] Bug #2373780 - CVE-2025-6191 chromium: Chromium integer overflow [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2373780 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-4fed640c91' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project canbe found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . The latest release of Fedora 41 features essential updates for chromium, tackling serious vulnerabilities related to integer overflow and use-after-free issues within the Profiler component.. Fedora 41, chromium update, critical patch, security fix. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 22, 2025 Critical Fedora
87

Debian 12: DSA-5944-1 critical: chromium arbitrary code execution

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5944-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Andres Salomon June 18, 2025 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2025-6191 CVE-2025-6192 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 137.0.7151.119-1~deb12u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Recent vulnerabilities in Chromium on Debian have been identified, posing a significant risk of unauthorized code execution; prompt updates advised.. Debian Security, Chromium Update, Code Execution, Security Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 19, 2025 Critical Debian
89

Fedora 41: FEDORA-2025-aa9ea529fb critical: chromium type confusion

Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-aa9ea529fb 2025-06-15 01:06:28.140427+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 41 Version : 137.0.7151.103 Release : 1.fc41 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 11 2025 Than Ngo - 137.0.7151.103-1 - Update to 137.0.7151.103 * CVE-2025-5958: Use after free in Media * CVE-2025-5959: Type Confusion in V8 - Provide correct version for bundle librarires - Fix rhbz#2368923, Chromium crash -------------------------------------------------------------------------------- References: [ 1 ] Bug #2368923 - Chromium crashes with "SIGILL" when using the "ENTITIES HTML MathML Set" doctype in an XSLT stylesheet https://bugzilla.redhat.com/show_bug.cgi?id=2368923 [ 2 ] Bug #2371648 - CVE-2025-5958 chromium: Chrome Media Use-After-Free Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371648 [ 3 ] Bug #2371653 - CVE-2025-5959 chromium: Chrome Type Confusion Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371653 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-aa9ea529fb' at thecommand line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Upgrade to Fedora 41, urgent security patches in chrome to address media use-after-free and type misinterpretation vulnerabilities.. Chromium Security, Fedora 41 Updates, Open Source Browsers. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 15, 2025 Critical Fedora
89

Fedora 42: FEDORA-2025-41bc291ca0 critical: chromium media issues

Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-41bc291ca0 2025-06-13 01:02:12.682948+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 42 Version : 137.0.7151.103 Release : 1.fc42 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 137.0.7151.103 CVE-2025-5958: Use after free in Media CVE-2025-5959: Type Confusion in V8 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 11 2025 Than Ngo - 137.0.7151.103-1 - Update to 137.0.7151.103 * CVE-2025-5958: Use after free in Media * CVE-2025-5959: Type Confusion in V8 - Provide correct version for bundle librarires - Fix rhbz#2368923, Chromium crash -------------------------------------------------------------------------------- References: [ 1 ] Bug #2368923 - Chromium crashes with "SIGILL" when using the "ENTITIES HTML MathML Set" doctype in an XSLT stylesheet https://bugzilla.redhat.com/show_bug.cgi?id=2368923 [ 2 ] Bug #2371648 - CVE-2025-5958 chromium: Chrome Media Use-After-Free Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371648 [ 3 ] Bug #2371653 - CVE-2025-5959 chromium: Chrome Type Confusion Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2371653 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-41bc291ca0' at thecommand line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Significant announcement for Fedora 42 tackling major concerns within Chromium's Media and V8 modules.. Fedora 42, chromium security, media use after free, type confusion. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 13, 2025 Critical Fedora
87

Ubuntu DSA-5943-2: Severe Firefox Buffer Overflow Vulnerability Fixed

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5942-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Andres Salomon June 11, 2025 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : chromium CVE ID : CVE-2025-5958 CVE-2025-5959 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the stable distribution (bookworm), these problems have been fixed in version 137.0.7151.103-1~deb12u1. We recommend that you upgrade your chromium packages. For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/chromium Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Critical vulnerabilities in Debian's Chromium could lead to unauthorized code execution, information breaches, or service disruptions. Update immediately!. Debian Chromium security, code execution risk, information disclosure debian, denial of service exploit. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 12, 2025 Critical Debian
89

Fedora 42: FEDORA-2025-bc0d109630 critical: chromium heap corruption

Update to 137.0.7151.68 CVE-2025-5419: Out of bounds read and write in V8 CVE-2025-5068: Use after free in Blink. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-bc0d109630 2025-06-07 06:45:35.205082+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 42 Version : 137.0.7151.68 Release : 1.fc42 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 137.0.7151.68 CVE-2025-5419: Out of bounds read and write in V8 CVE-2025-5068: Use after free in Blink -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 3 2025 Than Ngo - 137.0.7151.68-1 - Update to 137.0.7151.68 * CVE-2025-5419: Out of bounds read and write in V8 * CVE-2025-5068: Use after free in Blink -------------------------------------------------------------------------------- References: [ 1 ] Bug #2369919 - CVE-2025-5068 chromium: Chrome Use-After-Free Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2369919 [ 2 ] Bug #2369920 - CVE-2025-5068 chromium: Chrome Use-After-Free Vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2369920 [ 3 ] Bug #2369921 - CVE-2025-5419 chromium: Chrome Heap Corruption Vulnerability [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2369921 [ 4 ] Bug #2369922 - CVE-2025-5419 chromium: Chrome Heap Corruption Vulnerability [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2369922 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program.Use su -c 'dnf upgrade --advisory FEDORA-2025-bc0d109630' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . Essential patches for Fedora 42 Chromium dealing with out of bounds access and use after free flaws. Secure your system now!. Fedora 42, Chromim, Heap Corruption, Out of bounds, Use After Free. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jun 07, 2025 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200