ALT-PU-2026-6735-1

Обновление пакета chromium в ветке sisyphus

Версия147.0.7727.116-alt1

Задание#416212

Опубликовано2026-04-24

Макс. серьёзностьCRITICAL

Серьёзность:

Закрытые проблемы (3)

CRITICAL9.6

Use after free in DevTools in Google Chrome prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Опубликовано: 2026-04-23Изменено: 2026-04-24

CVSS 3.xКРИТИЧЕСКАЯ 9.6

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Ссылки

CRITICAL9.6

Out of bounds read in GPU in Google Chrome on Android prior to 147.0.7727.117 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

Опубликовано: 2026-04-23Изменено: 2026-04-24

CVSS 3.xКРИТИЧЕСКАЯ 9.6

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Ссылки

HIGH8.3

Race in GPU in Google Chrome on Windows prior to 147.0.7727.117 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. (Chromium security severity: Medium)

Опубликовано: 2026-04-23Изменено: 2026-04-24

CVSS 3.xВЫСОКАЯ 8.3

CVSS:3.x/CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Ссылки