Package chromium updated to version 137.0.7151.68-alt1 for branch sisyphus in task 386232.

Published: 2025-06-03
Modified: 2025-06-03

CVE-2025-5068

Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

References:

https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/409059706

Published: 2025-06-03
Modified: 2025-06-03

CVE-2025-5419

Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

References:

https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html
https://issues.chromium.org/issues/420636529

Version: 2.1.1

Package chromium update in sisyphus on 2025-06-04

ALT-PU-2025-7739-1

Closed vulnerabilities

CVE-2025-5068

CVE-2025-5419