chromium vulnerabilities

Known vulnerabilities in the chromium package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L GHSA-4c4w-77f9-v9mq	<128.0.6613.119-r0
L GHSA-rw7g-4966-p363	<128.0.6613.119-r0
L CVE-2024-7970	<128.0.6613.119-r0
L CVE-2024-8362	<128.0.6613.119-r0
L GHSA-76vg-grjj-w595	<128.0.6613.119-r0
H Out-of-bounds Write	<128.0.6613.119-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<128.0.6613.119-r0
H Out-of-bounds Write	<128.0.6613.119-r0
L GHSA-5q6v-fp9h-6rjg	<128.0.6613.119-r0
L GHSA-pmc4-h8jw-3hc9	<128.0.6613.119-r0
H Insufficient Verification of Data Authenticity	<128.0.6613.84-r0
L GHSA-57cq-jgq2-x7vg	<128.0.6613.84-r0
L GHSA-r3h8-2v74-r6qj	<128.0.6613.84-r0
M CVE-2024-7975	<128.0.6613.84-r0
H Out-of-Bounds	<128.0.6613.84-r0
H CVE-2024-7977	<128.0.6613.84-r0
L GHSA-2xc5-3f92-ffpr	<128.0.6613.84-r0
L GHSA-4pj3-wmgx-2h8r	<128.0.6613.84-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<128.0.6613.84-r0
H Insufficient Verification of Data Authenticity	<128.0.6613.84-r0
L GHSA-p34g-w82h-w82c	<128.0.6613.84-r0
L GHSA-p269-768c-9733	<128.0.6613.84-r0
L GHSA-p8h7-64p8-w5pq	<128.0.6613.84-r0
L GHSA-j2gf-fhx6-5xrq	<128.0.6613.84-r0
L GHSA-6j9j-7v9j-7mf7	<128.0.6613.84-r0
M CVE-2024-7978	<128.0.6613.84-r0
M CVE-2024-8034	<128.0.6613.84-r0
H CVE-2024-7974	<128.0.6613.84-r0
M CVE-2024-7981	<128.0.6613.84-r0
H CVE-2024-7972	<128.0.6613.84-r0
L GHSA-c7v6-r97x-ppjq	<128.0.6613.84-r0
L GHSA-pq5w-h3jm-m95c	<128.0.6613.84-r0
L GHSA-374f-438q-472r	<128.0.6613.84-r0
L GHSA-8v6h-j8r8-9mjq	<128.0.6613.84-r0
H Use After Free	<128.0.6613.84-r0
M CVE-2024-8033	<128.0.6613.84-r0
H Out-of-bounds Write	<128.0.6613.84-r0
H Use After Free	<128.0.6613.84-r0
L GHSA-8p7p-r9xv-w8g4	<128.0.6613.84-r0
M CVE-2024-7976	<128.0.6613.84-r0
L GHSA-q3q8-95m2-545r	<128.0.6613.84-r0
H Out-of-bounds Write	<128.0.6613.84-r0
C Access of Resource Using Incompatible Type ('Type Confusion')	<128.0.6613.84-r0
H Out-of-bounds Write	<128.0.6613.84-r0
L GHSA-v4c3-qgm8-jh35	<128.0.6613.84-r0
L GHSA-x38q-hvmx-rwhg	<128.0.6613.84-r0
L GHSA-3466-hwg6-rp7h	<128.0.6613.84-r0
L GHSA-9wpw-58rw-f8gm	<128.0.6613.84-r0
M CVE-2024-8035	<128.0.6613.84-r0
L GHSA-hg5m-x49p-g9h8	<128.0.6613.84-r0
H Out-of-bounds Write	<127.0.6533.119-r0
L GHSA-373g-hg3v-qf78	<127.0.6533.119-r0
H Use After Free	<127.0.6533.119-r0
L GHSA-r54r-2wq9-h4ww	<127.0.6533.119-r0
L GHSA-gqq7-89cw-236x	<127.0.6533.119-r0
H Out-of-bounds Write	<127.0.6533.119-r0
H Out-of-bounds Write	<127.0.6533.119-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<127.0.6533.119-r0
L GHSA-4c65-phqf-cq3w	<127.0.6533.119-r0
L GHSA-mm8x-5pvc-7mmq	<127.0.6533.119-r0
L GHSA-gh9v-q4wx-5m5c	<127.0.6533.88-r0
H Out-of-bounds Read	<127.0.6533.88-r0
L GHSA-mcqx-pmh8-v9cr	<127.0.6533.88-r0
L GHSA-qwvh-x5gw-88v2	<127.0.6533.88-r0
L CVE-2024-7256	<127.0.6533.88-r0
H Use of Uninitialized Resource	<127.0.6533.88-r0
L CVE-2024-6772	<126.0.6478.182-r0
L CVE-2024-6773	<126.0.6478.182-r0
L GHSA-9m98-937v-r97x	<126.0.6478.182-r0
L GHSA-cc8c-62x7-qwjr	<126.0.6478.182-r0
L CVE-2024-6778	<126.0.6478.182-r0
L CVE-2024-6774	<126.0.6478.182-r0
L CVE-2024-6779	<126.0.6478.182-r0
L GHSA-7hjm-9cg2-rcg6	<126.0.6478.182-r0
L CVE-2024-6777	<126.0.6478.182-r0
L CVE-2024-6775	<126.0.6478.182-r0
L CVE-2024-6776	<126.0.6478.182-r0
L GHSA-v4v9-v4wf-9c86	<126.0.6478.182-r0
L GHSA-cgm7-mqr6-f7vg	<126.0.6478.182-r0
L GHSA-7gj8-545r-5295	<126.0.6478.182-r0
L GHSA-mxwm-jm3p-mh5m	<126.0.6478.182-r0
L GHSA-w2v8-c457-cjvf	<126.0.6478.182-r0
L GHSA-9f8f-453p-rg87	<126.0.6478.126-r0
L GHSA-m848-8f5r-6j4g	<126.0.6478.126-r0
L CVE-2024-6290	<126.0.6478.126-r0
L CVE-2024-6293	<126.0.6478.126-r0
L GHSA-r5mh-qgc2-26p2	<126.0.6478.126-r0
L GHSA-rpvg-h6p6-42qj	<126.0.6478.126-r0
L CVE-2024-6291	<126.0.6478.126-r0
L CVE-2024-6292	<126.0.6478.126-r0
H Use After Free	<126.0.6478.114-r0
H Out-of-bounds Write	<126.0.6478.114-r0
L GHSA-rg42-f9ww-x3w7	<126.0.6478.114-r0
H CVE-2024-6101	<126.0.6478.114-r0
L GHSA-2gf4-m97g-cvpw	<126.0.6478.114-r0
L GHSA-g779-vpj7-v6c4	<126.0.6478.114-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<126.0.6478.114-r0
L GHSA-ph5m-227m-fc5g	<126.0.6478.114-r0
L GHSA-f4mg-w8x4-gr5x	<126.0.6478.55-r0
L GHSA-vjrj-8gj5-hpvr	<126.0.6478.55-r0
L GHSA-rw9q-cwc5-qqp5	<126.0.6478.55-r0
M CVE-2024-5840	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
L GHSA-g9f9-c2xm-rwmm	<126.0.6478.55-r0
L GHSA-93vj-795w-gh3c	<126.0.6478.55-r0
L GHSA-4rhg-qwrc-fj7f	<126.0.6478.55-r0
L GHSA-m52w-j3pc-g32g	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
M CVE-2024-5839	<126.0.6478.55-r0
L GHSA-m9f8-fccv-p7vh	<126.0.6478.55-r0
H Out-of-bounds Write	<126.0.6478.55-r0
L GHSA-664v-jfq4-4mfq	<126.0.6478.55-r0
M CVE-2024-5843	<126.0.6478.55-r0
L GHSA-cxr8-69xq-5r5p	<126.0.6478.55-r0
L GHSA-jv5g-9525-8rxj	<126.0.6478.55-r0
L GHSA-9w6w-f2x5-m36p	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
L GHSA-fchp-8m28-g68f	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
H Out-of-bounds Write	<126.0.6478.55-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<126.0.6478.55-r0
H Use After Free	<126.0.6478.55-r0
H CVE-2024-5836	<126.0.6478.55-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<126.0.6478.55-r0
L GHSA-6jjp-xcg6-63r6	<126.0.6478.55-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<126.0.6478.55-r0
L GHSA-9pmm-wf44-xjqc	<126.0.6478.55-r0
H CVE-2024-5834	<126.0.6478.55-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<126.0.6478.55-r0
L GHSA-3g94-3h93-rrf8	<126.0.6478.55-r0
L GHSA-h5pw-pphc-8fmq	<126.0.6478.55-r0
L GHSA-49q5-4wm8-j4qp	<126.0.6478.55-r0
L GHSA-8mwf-wgf7-7qpx	<125.0.6422.141-r0
L GHSA-f6rr-qfxh-hcf9	<125.0.6422.141-r0
L CVE-2024-5498	<125.0.6422.141-r0
L GHSA-fqjc-cfjx-7rv8	<125.0.6422.141-r0
L GHSA-wrxh-8wc3-33rm	<125.0.6422.141-r0
L GHSA-hqfv-mf6j-g3j6	<125.0.6422.141-r0
L CVE-2024-5493	<125.0.6422.141-r0
L CVE-2024-5497	<125.0.6422.141-r0
L CVE-2024-5499	<125.0.6422.141-r0
L GHSA-fv2x-w8xf-gxpq	<125.0.6422.141-r0
L CVE-2024-5494	<125.0.6422.141-r0
L CVE-2024-5496	<125.0.6422.141-r0
L GHSA-8xgv-q88p-ghq4	<125.0.6422.141-r0
L CVE-2024-5495	<125.0.6422.141-r0
C Access of Resource Using Incompatible Type ('Type Confusion')	<125.0.6422.112-r0
L GHSA-xvp9-87cv-m4fv	<125.0.6422.60-r0
C Access of Resource Using Incompatible Type ('Type Confusion')	<125.0.6422.60-r0
M Use After Free	<125.0.6422.60-r0
L GHSA-p76p-6f26-4vgq	<125.0.6422.60-r0
L GHSA-c24q-2hx9-mjpc	<125.0.6422.112-r0
L GHSA-4433-jwm9-48r5	<125.0.6422.112-r0
M Improper Restriction of Rendered UI Layers or Frames	<125.0.6422.60-r0
L GHSA-qmp7-vwf7-6g2g	<125.0.6422.112-r0
M Use After Free	<125.0.6422.60-r0
L GHSA-w7g4-69hj-jcrq	<125.0.6422.112-r0
L GHSA-h2pj-pf6w-85p2	<125.0.6422.60-r0
H Out-of-bounds Write	<125.0.6422.112-r0
H Out-of-bounds Read	<125.0.6422.112-r0
H Use After Free	<125.0.6422.112-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<125.0.6422.112-r0
L GHSA-p8v3-5hqq-7c5r	<125.0.6422.60-r0
H Out-of-bounds Write	<125.0.6422.60-r0
L GHSA-8q82-45v9-cmr9	<125.0.6422.60-r0
H Use After Free	<124.0.6367.201-r0
L GHSA-5jhr-gg3j-ggcf	<124.0.6367.201-r0
L GHSA-jx24-3g7h-4qj2	<124.0.6367.201-r0
H Use After Free	<124.0.6367.201-r0
L GHSA-4qw6-vwc8-mh38	<124.0.6367.91-r0
L GHSA-23rw-79p3-xgcm	<124.0.6367.91-r0
M Use After Free	<124.0.6367.91-r0
L GHSA-9xrg-j488-68qq	<124.0.6367.91-r0
M Out-of-bounds Read	<124.0.6367.91-r0
H Access of Resource Using Incompatible Type ('Type Confusion')	<124.0.6367.91-r0
H CVE-2024-3840	<124.0.6367.60-r0
L GHSA-7jw6-8f8g-469v	<124.0.6367.60-r0
L GHSA-c47q-h9w3-rcwg	<124.0.6367.60-r0
L GHSA-h5wc-jv87-367w	<124.0.6367.60-r0
H CVE-2024-3833	<124.0.6367.60-r0
M CVE-2024-3846	<124.0.6367.60-r0
M Cross-site Scripting (XSS)	<124.0.6367.60-r0
M CVE-2024-3843	<124.0.6367.60-r0
L GHSA-qqpr-fvmc-87j3	<124.0.6367.60-r0
M Use After Free	<124.0.6367.60-r0
L GHSA-fff2-pwcg-x73m	<124.0.6367.60-r0
L GHSA-5r57-jcc8-jhh3	<124.0.6367.60-r0
M CVE-2024-3838	<124.0.6367.60-r0
L GHSA-gmx8-9854-xjqr	<124.0.6367.60-r0
L GHSA-jv87-hfr8-8j2r	<124.0.6367.60-r0
H Use After Free	<124.0.6367.60-r0
L GHSA-gqmf-j3fp-9x2f	<124.0.6367.60-r0
M Cross-site Scripting (XSS)	<124.0.6367.60-r0
L GHSA-jfh3-f27x-p9gp	<124.0.6367.60-r0
H Use After Free	<124.0.6367.60-r0
H CVE-2024-3832	<124.0.6367.60-r0
L GHSA-5mvp-3rph-rfxg	<124.0.6367.60-r0
L GHSA-gxh7-r3qj-jmff	<124.0.6367.60-r0
L GHSA-cq73-mwp9-qgj2	<124.0.6367.60-r0
M Out-of-bounds Read	<124.0.6367.60-r0
M CVE-2024-3845	<124.0.6367.60-r0
M CVE-2024-3844	<124.0.6367.60-r0
L GHSA-r8fc-3gvg-wxxf	<124.0.6367.60-r0
L GHSA-mh2p-2x66-3hr4	<123.0.6312.105-r0
H Out-of-Bounds	<123.0.6312.105-r0
H CVE-2024-3156	<123.0.6312.105-r0
H Use After Free	<123.0.6312.105-r0
L GHSA-g47c-q844-rxj3	<123.0.6312.105-r0
L GHSA-r9g8-4h9q-3jfp	<123.0.6312.105-r0
L GHSA-vgj9-5c97-pwx2	<122.0.6261.128-r0
L GHSA-gf62-m3q5-x45g	<122.0.6261.128-r0
H Out-of-bounds Write	<122.0.6261.128-r0
H Out-of-bounds Write	<122.0.6261.128-r0
H Use After Free	<122.0.6261.128-r0
L GHSA-6hhg-hj7x-7qv8	<122.0.6261.128-r0

Vulnerability

Vulnerable Version

<128.0.6613.119-r0

<128.0.6613.119-r0

<128.0.6613.119-r0

<128.0.6613.119-r0

<128.0.6613.119-r0

<128.0.6613.119-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<128.0.6613.119-r0

Out-of-bounds Write

<128.0.6613.119-r0

GHSA-5q6v-fp9h-6rjg

<128.0.6613.119-r0

GHSA-pmc4-h8jw-3hc9

<128.0.6613.119-r0

Insufficient Verification of Data Authenticity

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<128.0.6613.84-r0

Insufficient Verification of Data Authenticity

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<128.0.6613.84-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.119-r0

<127.0.6533.88-r0

<127.0.6533.88-r0

<127.0.6533.88-r0

<127.0.6533.88-r0

<127.0.6533.88-r0

Use of Uninitialized Resource

<127.0.6533.88-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.182-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.126-r0

<126.0.6478.114-r0

<126.0.6478.114-r0

<126.0.6478.114-r0

<126.0.6478.114-r0

<126.0.6478.114-r0

<126.0.6478.114-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<126.0.6478.114-r0

<126.0.6478.114-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<126.0.6478.55-r0

Use After Free

<126.0.6478.55-r0

CVE-2024-5836

<126.0.6478.55-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<126.0.6478.55-r0

GHSA-6jjp-xcg6-63r6

<126.0.6478.55-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<126.0.6478.55-r0

GHSA-9pmm-wf44-xjqc

<126.0.6478.55-r0

CVE-2024-5834

<126.0.6478.55-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<126.0.6478.55-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

<125.0.6422.141-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<125.0.6422.112-r0

GHSA-xvp9-87cv-m4fv

<125.0.6422.60-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<125.0.6422.60-r0

<125.0.6422.60-r0

<125.0.6422.60-r0

<125.0.6422.112-r0

<125.0.6422.112-r0

Improper Restriction of Rendered UI Layers or Frames

<125.0.6422.60-r0

<125.0.6422.112-r0

<125.0.6422.60-r0

<125.0.6422.112-r0

<125.0.6422.60-r0

<125.0.6422.112-r0

<125.0.6422.112-r0

<125.0.6422.112-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<125.0.6422.112-r0

<125.0.6422.60-r0

<125.0.6422.60-r0

<125.0.6422.60-r0

<124.0.6367.201-r0

<124.0.6367.201-r0

<124.0.6367.201-r0

<124.0.6367.201-r0

<124.0.6367.91-r0

<124.0.6367.91-r0

<124.0.6367.91-r0

<124.0.6367.91-r0

<124.0.6367.91-r0

Access of Resource Using Incompatible Type ('Type Confusion')

<124.0.6367.91-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

Cross-site Scripting (XSS)

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

Cross-site Scripting (XSS)

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<124.0.6367.60-r0

<123.0.6312.105-r0

<123.0.6312.105-r0

<123.0.6312.105-r0

<123.0.6312.105-r0

<123.0.6312.105-r0

<123.0.6312.105-r0

<122.0.6261.128-r0

<122.0.6261.128-r0

<122.0.6261.128-r0

<122.0.6261.128-r0

<122.0.6261.128-r0

<122.0.6261.128-r0

chromium vulnerabilities

Direct Vulnerabilities

How to fix?