ALT Linux Team

Branch sisyphus update on 2025-10-14

2025-10-14

ALT-BU-2025-12966-1

Branch sisyphus update bulletin.

ALT-PU-2025-12938-1

Package chromium updated to version 141.0.7390.76-alt1 for branch sisyphus in task 396927.

Closed vulnerabilities

Published: 2025-11-06
Modified: 2025-11-25

CVE-2025-11458

Heap buffer overflow in Sync in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

Severity: HIGH (8.1) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
References:
Published: 2025-11-06
Modified: 2025-11-25

CVE-2025-11460

Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to execute arbitrary code via a crafted video file. (Chromium security severity: High)

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:

Closed bugs

Bug #40695

Некорректное создание ярлыков сайтов

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.2
Back to top