{"id":"MGASA-2025-0159","summary":"Updated chromium-browser-stable packages fix security vulnerabilities","details":"Heap buffer overflow in HTML. (CVE-2025-4096)\nOut of bounds memory access in DevTools. (CVE-2025-4050)\nInsufficient data validation in DevTools. (CVE-2025-4051)\nInappropriate implementation in DevTools. (CVE-2025-4052)\nUse after free in WebAudio. (CVE-2025-4372)\nInsufficient policy enforcement in Loader. (CVE-2025-4664)\nIncorrect handle provided in unspecified circumstances in Mojo.\n(CVE-2025-4609)\n","modified":"2026-02-04T03:18:02.494374Z","published":"2025-05-23T20:06:42Z","related":["CVE-2025-4050","CVE-2025-4051","CVE-2025-4052","CVE-2025-4096","CVE-2025-4372","CVE-2025-4609","CVE-2025-4664"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0159.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34235"},{"type":"REPORT","url":"https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_29.html"},{"type":"REPORT","url":"https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop.html"},{"type":"REPORT","url":"https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_14.html"}],"affected":[{"package":{"name":"chromium-browser-stable","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"136.0.7103.113-1.mga9.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0159.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}