CVE-2026-5870

Опубликовано: 08 апр. 2026

Источник: debian

EPSS Низкий

Описание

Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
chromium	fixed	147.0.7727.55-1		package
chromium	end-of-life		bullseye	package
libskia	unfixed			package

EPSS

Процентиль: 11%

0.00038

Низкий

Связанные уязвимости

CVE-2026-5870

ubuntu

6 дней назад

Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5870

CVSS3: 9.6

redhat

8 дней назад

Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5870

nvd

6 дней назад

Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVE-2026-5870

msrc

4 дня назад

Chromium: CVE-2026-5870 Integer overflow in Skia

GHSA-7vch-9rmg-wjrj

CVSS3: 8.8

github

6 дней назад

Integer overflow in Skia in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

EPSS

Процентиль: 11%

0.00038

Низкий