Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Google Chrome: Code Execution via Malicious Webpage
DEBIAN-CVE-2026-5872
Summary
A security issue in older versions of Google Chrome allows a malicious website to potentially execute unauthorized code on your computer. This issue affects users who haven't updated to the latest version of Chrome. To stay secure, update to the latest version of Chrome as soon as possible.
What to do
- Update debian chromium to version 147.0.7727.55-1~deb12u1.
- Update debian chromium to version 147.0.7727.55-1~deb13u1.
- Update debian chromium to version 147.0.7727.55-1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | chromium | All versions | – |
| debian | chromium | <= 147.0.7727.55-1~deb12u1 | 147.0.7727.55-1~deb12u1 |
| debian | chromium | <= 147.0.7727.55-1~deb13u1 | 147.0.7727.55-1~deb13u1 |
| debian | chromium | <= 147.0.7727.55-1 | 147.0.7727.55-1 |
Original title
Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
Original description
Use after free in Blink in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
- https://security-tracker.debian.org/tracker/CVE-2026-5872 Vendor Advisory
Published: 8 Apr 2026 · Updated: 12 Apr 2026 · First seen: 12 Apr 2026