CVE-2025-11756

HIGH8.8EPSS 0.11%

chromium - security update

Published: 11/6/2025Modified: 10/16/2025

Also known as:DSA-6026-1DEBIAN-CVE-2025-11756

Description

Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote attacker who had compromised the renderer process to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

Affected packages (2)

Debian/chromiumfrom 0
Debian/chromiumfrom 0, < 141.0.7390.107-1~deb12u1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2025-11756