Linuxsecurity
Critical Use After Free Vulnerabilities in Fedora Chromium Update
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
On June 9, 2026, Fedora released an update for Chromium version 149.0.7827.102 addressing multiple critical vulnerabilities, primarily use after free issues. The update includes CVE-2026-11628 to CVE-2026-11667, affecting components like Ozone, Aura, and Bluetooth. These vulnerabilities could allow attackers to execute arbitrary code or crash the browser, impacting all users of Fedora 43 and 44. The vulnerabilities were published between June 8 and June 9, 2026, with CVE-2026-11645 noted for active exploitation as of June 9. Security professionals are urged to apply the updates immediately to mitigate risks. The vulnerabilities are significant due to their potential for exploitation in real-world attacks.
Key Points: • Fedora's Chromium update addresses multiple critical use after free vulnerabilities. • CVE-2026-11645 has been confirmed for active exploitation, heightening urgency. • All users of Fedora 43 and 44 are affected and should update immediately.