CVE-2026-1861

Опубликовано: 03 фев. 2026

Источник: debian

EPSS Низкий

Описание

Heap buffer overflow in libvpx in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	144.0.7559.109-2		package
chromium	end-of-life		bullseye	package

Примечания

https://issues.oss-fuzz.com/issues/476466137
https://chromium.googlesource.com/webm/libvpx/+/d5f35ac8d93cba7f7a3f7ddb8f9dc8bd28f785e1

EPSS

Процентиль: 9%

0.0003

Низкий

Связанные уязвимости

CVE-2026-1861

CVSS3: 8.8

ubuntu

около 2 месяцев назад

Heap buffer overflow in libvpx in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2026-1861

CVSS3: 8.8

nvd

около 2 месяцев назад

Heap buffer overflow in libvpx in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

CVE-2026-1861

msrc

около 2 месяцев назад

Chromium: CVE-2026-1861 Heap buffer overflow in libvpx

GHSA-9jqj-4cr8-rr2f

CVSS3: 8.8

github

около 2 месяцев назад

Heap buffer overflow in libvpx in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

BDU:2026-01937

CVSS3: 8.8

fstec

2 месяца назад

Уязвимость библиотеки libvpx браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 9%

0.0003

Низкий