Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
89
security advisoryfedorahighFedora 42: CEF High CVE-2026-0628 Insufficient Policy Enforcement Advisory
Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-2a94cc43d9 2026-01-21 01:30:15.162802+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 42 Version : 143.0.13^chromium143.0.7499.192 Release : 1.fc42 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 9 2026 Than Ngo - 143.0.13^chromium143.0.7499.192-1 - Update to 143.0.7499.192 [rhbz#2427842] - * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2427842 - cef-143.0.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2427842 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-2a94cc43d9' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 21, 2026
•Important
Fedora
89
security advisoryfedorahighFedora 43: Important Advisory on cef High Policy Enforcement CVE-2026-0628
Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-77e3579a49 2026-01-21 01:10:49.670808+00:00 -------------------------------------------------------------------------------- Name : cef Product : Fedora 43 Version : 143.0.13^chromium143.0.7499.192 Release : 1.fc43 URL : https://bitbucket.org/chromiumembedded/cef Summary : Chromium Embedded Framework Description : CEF is an embeddable build of Chromium, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 143.0.7499.192 [rhbz#2427842] * High CVE-2026-0628: Insufficient policy enforcement in WebView tag -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 9 2026 Than Ngo - 143.0.13^chromium143.0.7499.192-1 - Update to 143.0.7499.192 [rhbz#2427842] - * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2427842 - cef-143.0.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=2427842 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-77e3579a49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 21, 2026
•Critical
Fedora
89
security advisoryfedorahighFedora 43: Chromium High Insufficient Policy Enforcement CVE-2026-0628
Update to 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-66162d01ae 2026-01-11 01:13:32.851869+00:00 -------------------------------------------------------------------------------- Name : chromium Product : Fedora 43 Version : 143.0.7499.192 Release : 1.fc43 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser that Google doesn't want you to use Description : Chromium is an open-source web browser, powered by WebKit (Blink). -------------------------------------------------------------------------------- Update Information: Update to 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag * Enable control flow integrity support for x86_64/aarch64 * Enable build for epel10.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 7 2026 Than Ngo - 143.0.7499.192-1 - Update tp 143.0.7499.192 * High CVE-2026-0628: Insufficient policy enforcement in WebView tag - Fix rhbz#2425338, Enable control flow integrity support for x86_64/aarch64 - Enable build for epel10.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2425338 - Please re-enable CFI build option https://bugzilla.redhat.com/show_bug.cgi?id=2425338 [ 2 ] Bug #2425439 - Chromium not updated RHEL 10 https://bugzilla.redhat.com/show_bug.cgi?id=2425439 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-66162d01ae' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 11, 2026
•Critical
Fedora
89
security advisoryfedorause-after-freeFedora 42: Bugfix for qt6-qtwebview Addressing CVE-2025-10729 Issue
Qt 6.9.3 bugfix update.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-945dff8564 2025-10-30 04:33:58.492914+00:00 -------------------------------------------------------------------------------- Name : qt6-qtwebview Product : Fedora 42 Version : 6.9.3 Release : 1.fc42 URL : http://www.qt.io Summary : Qt6 - WebView component Description : Qt WebView provides a way to display web content in a QML application without necessarily including a full web browser stack by using native APIs where it makes sense. -------------------------------------------------------------------------------- Update Information: Qt 6.9.3 bugfix update. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 21 2025 Jan Grulich - 6.9.3-1 - 6.9.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2402380 - CVE-2025-10729 qt6-qtsvg: Use-after-free vulnerability in Qt SVG [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2402380 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-945dff8564' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Oct 30, 2025
•Important
Fedora
202
security advisorybuffer overflowlow severityopenSUSE: 2020:1154-1 Low Severity: Chromium Security Issues
An update that fixes 6 vulnerabilities is now available.. openSUSE Security Update: Security update of chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:1154-1 Rating: low References: #1174582 Cross-References: CVE-2020-6532 CVE-2020-6537 CVE-2020-6538 CVE-2020-6539 CVE-2020-6540 CVE-2020-6541 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes 6 vulnerabilities is now available. Description: Chromium was updated to 84.0.4147.105 (boo#1174582): * CVE-2020-6537: Type Confusion in V8 * CVE-2020-6538: Inappropriate implementation in WebView * CVE-2020-6532: Use after free in SCTP * CVE-2020-6539: Use after free in CSS * CVE-2020-6540: Heap buffer overflow in Skia * CVE-2020-6541: Use after free in WebUSB Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2020-1154=1 - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-1154=1 Package List: - openSUSE Leap 15.2 (x86_64): chromedriver-84.0.4147.105-lp152.2.9.1 chromedriver-debuginfo-84.0.4147.105-lp152.2.9.1 chromium-84.0.4147.105-lp152.2.9.1 chromium-debuginfo-84.0.4147.105-lp152.2.9.1 chromium-debugsource-84.0.4147.105-lp152.2.9.1 - openSUSE Leap 15.1 (x86_64): chromedriver-84.0.4147.105-lp151.2.112.1 chromedriver-debuginfo-84.0.4147.105-lp151.2.112.1 chromium-84.0.4147.105-lp151.2.112.1 chromium-debuginfo-84.0.4147.105-lp151.2.112.1 chromium-debugsource-84.0.4147.105-lp151.2.112.1 References: https://www.suse.com/security/cve/CVE-2020-6532.html https://www.suse.com/security/cve/CVE-2020-6537.html https://www.suse.com/security/cve/CVE-2020-6538.html https://www.suse.com/security/cve/CVE-2020-6539.html https://www.suse.com/security/cve/CVE-2020-6540.html https://www.suse.com/security/cve/CVE-2020-6541.html https://bugzilla.suse.com/1174582 -- . An update for openSUSE targeting chromium has been released to tackle minor security concerns, including comprehensive patching guidelines.. openSUSE Updates, Chromium Fixes, Security Alerts. . Severity: Low. LinuxSecurity.com Team
Aug 06, 2020
•Low
OpenSUSE
202
security advisorybuffer overflowimportantopenSUSE: 2020:0856-1 Important: Chromium Security Advisory
An update that fixes three vulnerabilities is now available.. openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:0856-1 Rating: important References: #1173029 #1173063 Cross-References: CVE-2020-6505 CVE-2020-6506 CVE-2020-6507 Affected Products: openSUSE Backports SLE-15-SP1 ______________________________________________________________________________ An update that fixes three vulnerabilities is now available. Description: This update for chromium fixes the following issues: Update to version 83.0.4103.106 (boo#1173029): * CVE-2020-6505: Use after free in speech * CVE-2020-6506: Insufficient policy enforcement in WebView * CVE-2020-6507: Out of bounds write in V8 - Enforce to not use system borders bsc#1173063 This update was imported from the openSUSE:Leap:15.1:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP1: zypper in -t patch openSUSE-2020-856=1 Package List: - openSUSE Backports SLE-15-SP1 (aarch64 x86_64): chromedriver-83.0.4103.106-bp151.3.88.1 chromium-83.0.4103.106-bp151.3.88.1 References: https://www.suse.com/security/cve/CVE-2020-6505.html https://www.suse.com/security/cve/CVE-2020-6506.html https://www.suse.com/security/cve/CVE-2020-6507.html https://bugzilla.suse.com/1173029 https://bugzilla.suse.com/1173063 -- . Critical openSUSE patch enhances security in firefox, remedying vulnerabilities with comprehensive update guidelines.. openSUSE Security Update, chromium Update, Important Fixes, CVE Issues. . Severity: Important. LinuxSecurity.com Team
Jun 24, 2020
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!