[Git][security-tracker-team/security-tracker][master] Track fixed version from chromium via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Apr 30 06:49:19 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0c3db5c9 by Salvatore Bonaccorso at 2026-04-30T07:48:43+02:00
Track fixed version from chromium via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -420,94 +420,94 @@ CVE-2026-42284
- python-git <unfixed>
NOTE: https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485
CVE-2026-7363 (Use after free in Canvas in Google Chrome on Linux, ChromeOS prior to ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7361 (Use after free in iOS in Google Chrome prior to 147.0.7727.138 allowed ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7344 (Use after free in Accessibility in Google Chrome on Windows prior to 1 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7343 (Use after free in Views in Google Chrome on Windows prior to 147.0.772 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7333 (Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7360 (Insufficient validation of untrusted input. in Compositing in Google C ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7359 (Use after free in ANGLE in Google Chrome prior to 147.0.7727.138 allow ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7358 (Use after free in Animation in Google Chrome prior to 147.0.7727.138 a ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7334 (Use after free in Views in Google Chrome on Mac prior to 147.0.7727.13 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7357 (Use after free in GPU in Google Chrome prior to 147.0.7727.138 allowed ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7356 (Use after free in Navigation in Google Chrome prior to 147.0.7727.138 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7354 (Out of bounds read and write in Angle in Google Chrome prior to 147.0. ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7353 (Heap buffer overflow in Skia in Google Chrome prior to 147.0.7727.138 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7352 (Use after free in Media in Google Chrome on Android prior to 147.0.772 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7351 (Race in MHTML in Google Chrome prior to 147.0.7727.138 allowed an atta ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7350 (Use after free in WebMIDI in Google Chrome prior to 147.0.7727.138 all ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7349 (Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowe ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7348 (Use after free in Codecs in Google Chrome prior to 147.0.7727.138 allo ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7335 (Use after free in media in Google Chrome prior to 147.0.7727.138 allow ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7336 (Use after free in WebRTC in Google Chrome prior to 147.0.7727.138 allo ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7337 (Type Confusion in V8 in Google Chrome prior to 147.0.7727.138 allowed ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7347 (Use after free in Chromoting in Google Chrome prior to 147.0.7727.138 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7346 (Inappropriate implementation in Tint in Google Chrome prior to 147.0.7 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7345 (Insufficient validation of untrusted input in Feedback in Google Chrom ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7338 (Use after free in Cast in Google Chrome prior to 147.0.7727.138 allowe ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7342 (Use after free in WebView in Google Chrome on Android prior to 147.0.7 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7341 (Use after free in WebRTC in Google Chrome prior to 147.0.7727.138 allo ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7339 (Heap buffer overflow in WebRTC in Google Chrome prior to 147.0.7727.13 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7340 (Integer overflow in ANGLE in Google Chrome on Windows prior to 147.0.7 ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-7355 (Use after free in Media in Google Chrome prior to 147.0.7727.138 allow ...)
- - chromium <unfixed>
+ - chromium 147.0.7727.137-1
[bullseye] - chromium <end-of-life> (see #1061268)
CVE-2026-40560 (Starman versions before 0.4018 for Perl allows HTTP Request Smuggling ...)
- starman <unfixed> (bug #1135229)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c3db5c94e41bea16bae60f1ce29461c179809a4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0c3db5c94e41bea16bae60f1ce29461c179809a4
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260430/3b27495b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list