Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/chromium@147.0.7727.101-1~deb13u1?distro=trixie
purl pkg:deb/debian/chromium@147.0.7727.101-1~deb13u1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (31)
Vulnerability Summary Aliases
VCID-1sea-z3vg-wfc4 Use after free in Prerender in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: Critical) CVE-2026-6299
VCID-212t-kjka-pbe4 Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) CVE-2026-6318
VCID-3c8j-6wcw-83ax Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) CVE-2026-6305
VCID-47az-428z-bkar Use after free in Graphite in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) CVE-2026-6304
VCID-7x3z-8d6t-vfen Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted video file. (Chromium security severity: High) CVE-2026-6362
VCID-8j9g-6zs1-13am Out of bounds write in GPU in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) CVE-2026-6314
VCID-97y1-b8j2-xfb5 Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Critical) CVE-2026-6298
VCID-9amk-6z38-qbb1 Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) CVE-2026-6313
VCID-9h91-43nj-7qgy Use after free in Permissions in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) CVE-2026-6315
VCID-dzf3-492x-budu Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2026-6303
VCID-erxp-a8pr-zyff Heap buffer overflow in ANGLE in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) CVE-2026-6296
VCID-fk6m-8k4f-hyhz Use after free in Video in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2026-6302
VCID-hyew-s4ya-43bv Heap buffer overflow in PDFium in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) CVE-2026-6361
VCID-jd9x-rsee-ekfk Out of bounds read in Media in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) CVE-2026-6308
VCID-jku3-pwsy-bufq Uninitialized Use in Accessibility in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) CVE-2026-6311
VCID-jqs4-fgj9-63g7 Use after free in Proxy in Google Chrome prior to 147.0.7727.101 allowed an attacker in a privileged network position to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical) CVE-2026-6297
VCID-k82r-r6dh-qfem chromium-browser: Use after free in CSS CVE-2026-6300
VCID-mjv9-578z-3kej Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) CVE-2026-6312
VCID-mp8f-94vu-jyf9 Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2026-6301
VCID-my86-8n81-y3hd Type Confusion in Turbofan in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2026-6307
VCID-ndkj-5v64-cfa9 Use after free in Viz in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) CVE-2026-6309
VCID-p4dd-y4mm-fqam Type Confusion in V8 in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium) CVE-2026-6363
VCID-q17c-ud54-5ydd Heap buffer overflow in PDFium in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file. (Chromium security severity: High) CVE-2026-6306
VCID-qrwz-k5dg-27b2 Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. (Chromium security severity: Medium) CVE-2026-6364
VCID-thk2-w3k4-jfep Use after free in FileSystem in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High) CVE-2026-6360
VCID-uded-9de1-xkdj Use after free in XR in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Critical) CVE-2026-6358
VCID-usvm-2xea-ffd6 Use after free in Dawn in Google Chrome prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High) CVE-2026-6310
VCID-uyu5-b3md-37cm Use after free in Payments in Google Chrome on Android prior to 147.0.7727.101 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. (Chromium security severity: Medium) CVE-2026-6319
VCID-x1xm-1qpa-u7c1 Use after free in Video in Google Chrome on Windows prior to 147.0.7727.101 allowed a remote attacker who had compromised the renderer process to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High) CVE-2026-6359
VCID-x688-21pv-7yf8 Use after free in Cast in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) CVE-2026-6317
VCID-ywwf-hc75-nbdm Use after free in Forms in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2026-6316

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-17T22:42:52.807281+00:00 Debian Importer Fixing VCID-qrwz-k5dg-27b2 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:52.665899+00:00 Debian Importer Fixing VCID-p4dd-y4mm-fqam https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:52.520696+00:00 Debian Importer Fixing VCID-7x3z-8d6t-vfen https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:52.363474+00:00 Debian Importer Fixing VCID-hyew-s4ya-43bv https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:52.217738+00:00 Debian Importer Fixing VCID-thk2-w3k4-jfep https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:52.073321+00:00 Debian Importer Fixing VCID-x1xm-1qpa-u7c1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.925655+00:00 Debian Importer Fixing VCID-uded-9de1-xkdj https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.765453+00:00 Debian Importer Fixing VCID-uyu5-b3md-37cm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.623634+00:00 Debian Importer Fixing VCID-212t-kjka-pbe4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.483195+00:00 Debian Importer Fixing VCID-x688-21pv-7yf8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.334860+00:00 Debian Importer Fixing VCID-ywwf-hc75-nbdm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.180333+00:00 Debian Importer Fixing VCID-9h91-43nj-7qgy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:51.028130+00:00 Debian Importer Fixing VCID-8j9g-6zs1-13am https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.881920+00:00 Debian Importer Fixing VCID-9amk-6z38-qbb1 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.729220+00:00 Debian Importer Fixing VCID-mjv9-578z-3kej https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.584692+00:00 Debian Importer Fixing VCID-jku3-pwsy-bufq https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.433354+00:00 Debian Importer Fixing VCID-usvm-2xea-ffd6 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.283227+00:00 Debian Importer Fixing VCID-ndkj-5v64-cfa9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:50.142810+00:00 Debian Importer Fixing VCID-jd9x-rsee-ekfk https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.996406+00:00 Debian Importer Fixing VCID-my86-8n81-y3hd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.851617+00:00 Debian Importer Fixing VCID-q17c-ud54-5ydd https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.708638+00:00 Debian Importer Fixing VCID-3c8j-6wcw-83ax https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.561956+00:00 Debian Importer Fixing VCID-47az-428z-bkar https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.415768+00:00 Debian Importer Fixing VCID-dzf3-492x-budu https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.266863+00:00 Debian Importer Fixing VCID-fk6m-8k4f-hyhz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:49.118505+00:00 Debian Importer Fixing VCID-mp8f-94vu-jyf9 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:48.976703+00:00 Debian Importer Fixing VCID-k82r-r6dh-qfem https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:48.833656+00:00 Debian Importer Fixing VCID-1sea-z3vg-wfc4 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:48.683599+00:00 Debian Importer Fixing VCID-97y1-b8j2-xfb5 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:48.543061+00:00 Debian Importer Fixing VCID-jqs4-fgj9-63g7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-17T22:42:48.402811+00:00 Debian Importer Fixing VCID-erxp-a8pr-zyff https://security-tracker.debian.org/tracker/data/json 38.4.0