{"id":"MGASA-2025-0187","summary":"Updated chromium-browser-stable packages fix security vulnerabilities","details":"CVE-2025-5063: Use after free in Compositing.\nCVE-2025-5280: Out of bounds write in V8.\nCVE-2025-5064: Inappropriate implementation in Background Fetch API.\nCVE-2025-5065: Inappropriate implementation in FileSystemAccess API.\nCVE-2025-5066: Inappropriate implementation in Messages.\nCVE-2025-5281: Inappropriate implementation in BFCache.\nCVE-2025-5283: Use after free in libvpx.\nCVE-2025-5067: Inappropriate implementation in Tab Strip.\nCVE-2025-5419: Out of bounds read and write in V8.\nCVE-2025-5068: Use after free in Blink.\nCVE-2025-5958: Use after free in Media.\nCVE-2025-5959: Type Confusion in V8.\n","modified":"2026-04-16T04:41:37.349761975Z","published":"2025-06-20T16:37:14Z","upstream":["CVE-2025-5063","CVE-2025-5064","CVE-2025-5065","CVE-2025-5066","CVE-2025-5067","CVE-2025-5068","CVE-2025-5280","CVE-2025-5281","CVE-2025-5283","CVE-2025-5419","CVE-2025-5958","CVE-2025-5959"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0187.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34340"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop_10.html"}],"affected":[{"package":{"name":"chromium-browser-stable","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"136.0.7103.113-2.mga9.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0187.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}