Peter Leibling – Seite 96

CVE-2026-4786 Incomplete mitigation of CVE-2026-4519, %action expansion for command injection to webbrowser.open()

Information published.

CVE-2026-5160

Information published.

CVE-2026-6100 Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure

Information published.

Chromium: CVE-2026-6313 Insufficient policy enforcement in CORS

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6312 Insufficient policy enforcement in Passwords

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6309 Use after free in Viz

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6311 Uninitialized Use in Accessibility

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6314 Out of bounds write in GPU

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6308 Out of bounds read in Media

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Chromium: CVE-2026-6310 Use after free in Dawn

This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2026) for more information.

Autor: Peter Leibling

CVE-2026-4786 Incomplete mitigation of CVE-2026-4519, %action expansion for command injection to webbrowser.open()

CVE-2026-5160

CVE-2026-6100 Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decompressor, and gzip.GzipFile after re-use under memory pressure

Chromium: CVE-2026-6313 Insufficient policy enforcement in CORS

Chromium: CVE-2026-6312 Insufficient policy enforcement in Passwords

Chromium: CVE-2026-6309 Use after free in Viz

Chromium: CVE-2026-6311 Uninitialized Use in Accessibility

Chromium: CVE-2026-6314 Out of bounds write in GPU

Chromium: CVE-2026-6308 Out of bounds read in Media

Chromium: CVE-2026-6310 Use after free in Dawn

Suchen