ALT-PU-2025-2834-1
Package chromium updated to version 133.0.6943.98-alt0.port for branch sisyphus_loongarch64.
Closed vulnerabilities
Published: 2025-02-15
Modified: 2025-04-10
Modified: 2025-04-10
CVE-2025-0995
Use after free in V8 in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Severity: HIGH (8.8)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2025-02-15
Modified: 2025-04-10
Modified: 2025-04-10
CVE-2025-0996
Inappropriate implementation in Browser UI in Google Chrome on Android prior to 133.0.6943.98 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)
Severity: MEDIUM (5.4)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
References:
Published: 2025-02-15
Modified: 2025-04-07
Modified: 2025-04-07
CVE-2025-0997
Use after free in Navigation in Google Chrome prior to 133.0.6943.98 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
Severity: HIGH (8.1)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
References:
Published: 2025-02-15
Modified: 2025-04-04
Modified: 2025-04-04
CVE-2025-0998
Rejected reason: Not exploitable