VulnerableCode Package Details - pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2rju-kk9j-1kbb	Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-5065
VCID-34ga-6n2z-4bcm	Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-5064
VCID-54d8-nkk2-nyhf	Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)	CVE-2025-5067
VCID-8vsf-szma-sbad	Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CVE-2025-5063
VCID-98mt-7srw-qfh4	A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code.	CVE-2025-5283
VCID-9q9q-6hv9-zkfc	Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user information via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-5281
VCID-ss8z-vqjp-sff2	Out of bounds write in V8 in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CVE-2025-5280
VCID-vej8-dj8m-a3cu	Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)	CVE-2025-5066

Vulnerability

Summary

Aliases

VCID-2rju-kk9j-1kbb

Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-5065

VCID-34ga-6n2z-4bcm

Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-5064

VCID-54d8-nkk2-nyhf

Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

CVE-2025-5067

VCID-8vsf-szma-sbad

Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2025-5063

VCID-98mt-7srw-qfh4

A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code.

CVE-2025-5283

VCID-9q9q-6hv9-zkfc

Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user information via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-5281

VCID-ss8z-vqjp-sff2

Out of bounds write in V8 in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2025-5280

VCID-vej8-dj8m-a3cu

Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-5066

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-17T22:42:16.707069+00:00	Debian Importer	Fixing	VCID-98mt-7srw-qfh4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:16.587356+00:00	Debian Importer	Fixing	VCID-9q9q-6hv9-zkfc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:16.456022+00:00	Debian Importer	Fixing	VCID-ss8z-vqjp-sff2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:16.194687+00:00	Debian Importer	Fixing	VCID-54d8-nkk2-nyhf	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:16.060326+00:00	Debian Importer	Fixing	VCID-vej8-dj8m-a3cu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:15.933417+00:00	Debian Importer	Fixing	VCID-2rju-kk9j-1kbb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:15.816276+00:00	Debian Importer	Fixing	VCID-34ga-6n2z-4bcm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-17T22:42:15.695921+00:00	Debian Importer	Fixing	VCID-8vsf-szma-sbad	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T17:48:50.394984+00:00	Debian Importer	Fixing	VCID-98mt-7srw-qfh4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:50.308481+00:00	Debian Importer	Fixing	VCID-9q9q-6hv9-zkfc	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:50.223170+00:00	Debian Importer	Fixing	VCID-ss8z-vqjp-sff2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:50.047182+00:00	Debian Importer	Fixing	VCID-54d8-nkk2-nyhf	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:49.960463+00:00	Debian Importer	Fixing	VCID-vej8-dj8m-a3cu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:49.873994+00:00	Debian Importer	Fixing	VCID-2rju-kk9j-1kbb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:49.786512+00:00	Debian Importer	Fixing	VCID-34ga-6n2z-4bcm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T17:48:49.699950+00:00	Debian Importer	Fixing	VCID-8vsf-szma-sbad	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:21:02.516433+00:00	Debian Importer	Fixing	VCID-98mt-7srw-qfh4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.484318+00:00	Debian Importer	Fixing	VCID-9q9q-6hv9-zkfc	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.453886+00:00	Debian Importer	Fixing	VCID-ss8z-vqjp-sff2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.387713+00:00	Debian Importer	Fixing	VCID-54d8-nkk2-nyhf	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.356649+00:00	Debian Importer	Fixing	VCID-vej8-dj8m-a3cu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.323245+00:00	Debian Importer	Fixing	VCID-2rju-kk9j-1kbb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.287577+00:00	Debian Importer	Fixing	VCID-34ga-6n2z-4bcm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:21:02.222580+00:00	Debian Importer	Fixing	VCID-8vsf-szma-sbad	https://security-tracker.debian.org/tracker/data/json	38.1.0