[Git][security-tracker-team/security-tracker][master] three chromium issues also affect Skia

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed May 6 22:32:07 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9c797300 by Moritz Muehlenhoff at 2026-05-06T23:31:00+02:00
three chromium issues also affect Skia

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -228,6 +228,7 @@ CVE-2026-7950 (Out of bounds read and write in GFX in Google Chrome prior to 148
 CVE-2026-7949 (Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 all ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
+	- libskia <unfixed>
 CVE-2026-7948 (Race in Chromoting in Google Chrome on Windows prior to 148.0.7778.96  ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -306,6 +307,7 @@ CVE-2026-7924 (Uninitialized Use in Dawn in Google Chrome prior to 148.0.7778.96
 CVE-2026-7923 (Out of bounds write in Skia in Google Chrome prior to 148.0.7778.96 al ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
+	- libskia <unfixed>
 CVE-2026-7922 (Use after free in ServiceWorker in Google Chrome prior to 148.0.7778.9 ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -315,6 +317,7 @@ CVE-2026-7921 (Use after free in Passwords in Google Chrome prior to 148.0.7778.
 CVE-2026-7920 (Use after free in Skia in Google Chrome prior to 148.0.7778.96 allowed ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)
+	- libskia <unfixed>
 CVE-2026-7919 (Use after free in Aura in Google Chrome prior to 148.0.7778.96 allowed ...)
 	- chromium 148.0.7778.96-1
 	[bullseye] - chromium <end-of-life> (see #1061268)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c79730094b2384e37a8341c23fec0de69dc490e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c79730094b2384e37a8341c23fec0de69dc490e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260506/7668f19e/attachment.htm>

More information about the debian-security-tracker-commits mailing list