Homepage

chromium-lang

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the chromium-lang package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2026-5897

<147.0.7727.116-r0
  • L
Race Condition

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
CVE-2026-6312

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5901

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5892

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • L
CVE-2026-5882

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5911

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5907

<147.0.7727.116-r0
  • L
CVE-2026-5881

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5878

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5880

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Improper Protection Against Physical Side Channels

<147.0.7727.116-r0
  • L
Use After Free

*
  • L
CVE-2026-5891

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
CVE-2026-5899

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5889

<147.0.7727.116-r0
  • L
CVE-2026-5863

<147.0.7727.116-r0
  • L
CVE-2026-5898

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5906

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
CVE-2026-5862

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
CVE-2026-5873

<147.0.7727.116-r0
  • L
CVE-2026-4461

<147.0.7727.116-r0
  • L
CVE-2026-5875

<147.0.7727.116-r0
  • L
Race Condition

<147.0.7727.116-r0
  • L
CVE-2026-5903

<147.0.7727.116-r0
  • L
Use of Uninitialized Variable

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • L
CVE-2026-5896

<147.0.7727.116-r0
  • M
Race Condition

<147.0.7727.116-r0
  • H
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
CVE-2026-5918

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
CVE-2026-5900

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • H
Use After Free

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
CVE-2026-5894

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
CVE-2026-5895

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use of Uninitialized Variable

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-5905

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-6313

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-4439

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Stack-based Buffer Overflow

<147.0.7727.116-r0
  • L
CVE-2026-5283

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • H
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • L
CVE-2026-5276

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
CVE-2026-4459

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
CVE-2026-4440

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
CVE-2026-5291

<147.0.7727.116-r0
  • L
CVE-2026-5279

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • L
CVE-2026-4447

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Access of Resource Using Incompatible Type ('Type Confusion')

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • M
CVE-2026-3063

<147.0.7727.116-r0
  • L
CVE-2026-3925

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • M
CVE-2026-3938

<147.0.7727.116-r0
  • H
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Integer Overflow or Wraparound

<147.0.7727.116-r0
  • H
External Control of Assumed-Immutable Web Parameter

<147.0.7727.116-r0
  • L
CVE-2026-3542

<147.0.7727.116-r0
  • L
CVE-2026-3927

<147.0.7727.116-r0
  • L
CVE-2026-3941

<147.0.7727.116-r0
  • L
CVE-2026-3543

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • M
CVE-2026-3937

<147.0.7727.116-r0
  • M
CVE-2026-3930

<147.0.7727.116-r0
  • L
CVE-2026-3539

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • M
CVE-2026-3935

<147.0.7727.116-r0
  • H
Out-of-bounds Write

<147.0.7727.116-r0
  • L
CVE-2026-3541

<147.0.7727.116-r0
  • L
CVE-2026-3545

<147.0.7727.116-r0
  • C
Out-of-bounds Read

<147.0.7727.116-r0
  • H
Integer Underflow

<147.0.7727.116-r0
  • L
Heap-based Buffer Overflow

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
CVE-2026-3942

<147.0.7727.116-r0
  • M
CVE-2026-3934

<147.0.7727.116-r0
  • L
CVE-2026-3920

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-3928

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • M
CVE-2026-3940

<147.0.7727.116-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • M
CVE-2026-3939

<147.0.7727.116-r0
  • H
Arbitrary Code Injection

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • C
Out-of-bounds Read

<147.0.7727.116-r0
  • H
CVE-2026-3932

<147.0.7727.116-r0
  • L
Improper Protection Against Physical Side Channels

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • L
Out-of-bounds Read

<147.0.7727.116-r0
  • H
Use After Free

<143.0.7499.192-r0
  • L
CVE-2026-2318

<143.0.7499.192-r0
  • L
Heap-based Buffer Overflow

<143.0.7499.192-r0
  • L
CVE-2026-1504

<147.0.7727.116-r0
  • L
Race Condition

<143.0.7499.192-r0
  • L
Out-of-bounds Write

<147.0.7727.116-r0
  • L
CVE-2026-1862

<147.0.7727.116-r0
  • L
CVE-2026-2322

<143.0.7499.192-r0
  • L
Use After Free

<143.0.7499.192-r0
  • L
CVE-2026-2315

<143.0.7499.192-r0
  • L
Heap-based Buffer Overflow

<143.0.7499.192-r0
  • L
CVE-2026-2323

<143.0.7499.192-r0
  • L
Heap-based Buffer Overflow

<143.0.7499.192-r0
  • L
CVE-2026-2317

<143.0.7499.192-r0
  • L
CVE-2026-2316

<143.0.7499.192-r0
  • L
CVE-2026-2320

<143.0.7499.192-r0
  • L
External Control of Assumed-Immutable Web Parameter

<143.0.7499.192-r0
  • H
Use After Free

<143.0.7499.192-r0
  • L
CVE-2026-0905

<147.0.7727.116-r0
  • L
Use After Free

<147.0.7727.116-r0
  • L
CVE-2026-0902

<147.0.7727.116-r0
  • L
CVE-2026-0899

<147.0.7727.116-r0
  • L
CVE-2026-0907

<147.0.7727.116-r0
  • L
CVE-2026-0901

<147.0.7727.116-r0
  • L
CVE-2026-0904

<147.0.7727.116-r0
  • L
CVE-2026-0906

<147.0.7727.116-r0
  • L
CVE-2026-0900

<147.0.7727.116-r0
  • L
Improper Input Validation

<147.0.7727.116-r0