[Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Jun 13 11:04:48 BST 2026 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
78fb1912 by Salvatore Bonaccorso at 2026-06-13T12:04:20+02:00
Track fixed version for chromium issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -722,88 +722,88 @@ CVE-2026-12059 (The SSH service of CelloOS developed by Cellopoint has an Improp
 CVE-2026-12038
 	REJECTED
 CVE-2026-12035 (Use after free in Views in Google Chrome on Windows prior to 149.0.782 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12034 (Insufficient validation of untrusted input in Linux Toolkit Theming in ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12033 (Out of bounds read in VideoCapture in Google Chrome prior to 149.0.782 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12032 (Inappropriate implementation in Passwords in Google Chrome on Android  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12031 (Inappropriate implementation in Views in Google Chrome on Windows prio ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12030 (Out of bounds write in GPU in Google Chrome on Android prior to 149.0. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12029 (Use after free in Video in Google Chrome on Windows prior to 149.0.782 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12028 (Use after free in GPU in Google Chrome on Android prior to 149.0.7827. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12027 (Inappropriate implementation in Headless in Google Chrome prior to 149 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12026 (Out of bounds read in Video in Google Chrome on ChromeOS prior to 149. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12025 (Insufficient validation of untrusted input in Network in Google Chrome ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12024 (Insufficient policy enforcement in DevTools in Google Chrome prior to  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12023 (Use after free in GPU in Google Chrome on Mac prior to 149.0.7827.115  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12022 (Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.115  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12020 (Use after free in Autofill in Google Chrome on Mac prior to 149.0.7827 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12019 (Heap buffer overflow in Codecs in Google Chrome on Linux and ChromeOS  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12018 (Inappropriate implementation in Mojo in Google Chrome on Windows prior ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12017 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12016 (Inappropriate implementation in DevTools in Google Chrome prior to 149 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12015 (Use after free in Autofill in Google Chrome prior to 149.0.7827.115 al ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12014 (Use after free in Cast in Google Chrome prior to 149.0.7827.115 allowe ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12013 (Use after free in Media in Google Chrome on Windows prior to 149.0.782 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12012 (Use after free in Network in Google Chrome prior to 149.0.7827.115 all ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12011 (Use after free in WebMIDI in Google Chrome on Windows prior to 149.0.7 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12010 (Heap buffer overflow in GPU in Google Chrome on Android prior to 149.0 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12009 (Insufficient validation of untrusted input in Accessibility in Google  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12008 (Use after free in DigitalCredentials in Google Chrome prior to 149.0.7 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12007 (Use after free in Core in Google Chrome on Windows prior to 149.0.7827 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.114-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-11933 (A use-after-free vulnerability exists in MongoDB Server's server-side  ...)
 	- mongodb <removed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78fb191234cafe630c4d75789f103a0df5c03b5a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/78fb191234cafe630c4d75789f103a0df5c03b5a
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260613/eee546cf/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list