Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Google Chrome: Malicious Website Can Steal Sensitive Data
DEBIAN-CVE-2026-5888
Summary
A security issue in Google Chrome versions prior to 147.0.7727.55 makes it possible for a malicious website to access sensitive information stored in Chrome's memory. This could include passwords, login credentials, or other confidential data. To protect yourself, update to the latest version of Google Chrome.
What to do
- Update debian chromium to version 147.0.7727.55-1~deb12u1.
- Update debian chromium to version 147.0.7727.55-1~deb13u1.
- Update debian chromium to version 147.0.7727.55-1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | chromium | All versions | – |
| debian | chromium | <= 147.0.7727.55-1~deb12u1 | 147.0.7727.55-1~deb12u1 |
| debian | chromium | <= 147.0.7727.55-1~deb13u1 | 147.0.7727.55-1~deb13u1 |
| debian | chromium | <= 147.0.7727.55-1 | 147.0.7727.55-1 |
Original title
Uninitialized Use in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium s...
Original description
Uninitialized Use in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium)
- https://security-tracker.debian.org/tracker/CVE-2026-5888 Vendor Advisory
Published: 8 Apr 2026 · Updated: 12 Apr 2026 · First seen: 12 Apr 2026