[Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5c613a94 by Salvatore Bonaccorso at 2026-06-18T06:03:52+02:00
Track fixed version for chromium issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1211,103 +1211,103 @@ CVE-2026-22313 (The device has a webserver that exposes a REST API authenticated
 CVE-2026-22312 (The device has a webserver that exposes a REST API authenticated with  ...)
 	NOT-FOR-US: iSAP Smart Collector
 CVE-2026-12469 (Uninitialized Use in GPU in Google Chrome on Android prior to 149.0.78 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12468 (Race in Updater in Google Chrome on Mac prior to 149.0.7827.155 allowe ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12467 (Use after free in Extensions in Google Chrome prior to 149.0.7827.155  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12466 (Heap buffer overflow in WebRTC in Google Chrome on Windows prior to 14 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12465 (Object lifecycle issue in Metrics in Google Chrome prior to 149.0.7827 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12464 (Use after free in Browser in Google Chrome prior to 149.0.7827.155 all ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12463 (Inappropriate implementation in Views in Google Chrome on Linux prior  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12462 (Use after free in Media in Google Chrome prior to 149.0.7827.155 allow ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12461 (Out of bounds read in WebRTC in Google Chrome on Windows prior to 149. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12460 (Insufficient policy enforcement in File System Access in Google Chrome ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12459 (Inappropriate implementation in Serial in Google Chrome prior to 149.0 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12458 (Inappropriate implementation in Passwords in Google Chrome prior to 14 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12457 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12456 (Inappropriate implementation in Extensions in Google Chrome prior to 1 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12455 (Use after free in Tab Strip in Google Chrome prior to 149.0.7827.155 a ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12454 (Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.155  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12453 (Insufficient validation of untrusted input in Input in Google Chrome p ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12452 (Use after free in Downloads in Google Chrome on Android prior to 149.0 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12451 (Use after free in DigitalCredentials in Google Chrome prior to 149.0.7 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12450 (Inappropriate implementation in Media in Google Chrome prior to 149.0. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12449 (Use after free in Chromoting in Google Chrome on Windows prior to 149. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12448 (Inappropriate implementation in WebView in Google Chrome on Android pr ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12447 (Heap buffer overflow in WebRTC in Google Chrome prior to 149.0.7827.15 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12446 (Inappropriate implementation in Passwords in Google Chrome prior to 14 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12445 (Use after free in Extensions in Google Chrome prior to 149.0.7827.155  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12444 (Out of bounds read in Chromoting in Google Chrome on Windows prior to  ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12443 (Use after free in Web Authentication in Google Chrome prior to 149.0.7 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12442 (Use after free in Passwords in Google Chrome on Android prior to 149.0 ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12441 (Use after free in File Input in Google Chrome on Linux prior to 149.0. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12440 (Use after free in DigitalCredentials in Google Chrome on Windows prior ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12439 (Use after free in Digital Credentials in Google Chrome prior to 149.0. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12438 (Inappropriate implementation in WebView in Google Chrome on Android pr ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12437 (Use after free in WebShare in Google Chrome on Windows prior to 149.0. ...)
-	- chromium <unfixed>
+	- chromium 149.0.7827.155-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
 CVE-2026-12425 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
 	NOT-FOR-US: Palo Alto Networks



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c613a94c8d19e228e9259c93f8b5826df8d2b0a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5c613a94c8d19e228e9259c93f8b5826df8d2b0a
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260618/b55a88a7/attachment.htm>