{"id":"MGASA-2025-0137","summary":"Updated chromium-browser-stable packages fix security vulnerabilities","details":"Use after free in Site Isolation. (CVE-2025-3066)\nInappropriate implementation in Custom Tabs. (CVE-2025-3067)\nInappropriate implementation in Intents. (CVE-2025-3068)\nInappropriate implementation in Extensions. (CVE-2025-3069)\nInsufficient validation of untrusted input in Extensions.\n(CVE-2025-3070)\nInappropriate implementation in Navigations. (CVE-2025-3071)\nInappropriate implementation in Custom Tabs. (CVE-2025-3072)\nInappropriate implementation in Autofill. (CVE-2025-3073)\nInappropriate implementation in Downloads. (CVE-2025-3074)\n","modified":"2026-04-16T00:09:05.925188692Z","published":"2025-04-17T23:34:32Z","upstream":["CVE-2025-3066","CVE-2025-3067","CVE-2025-3068","CVE-2025-3069","CVE-2025-3070","CVE-2025-3071","CVE-2025-3072","CVE-2025-3073","CVE-2025-3074"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0137.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=34156"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop.html"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_8.html"}],"affected":[{"package":{"name":"chromium-browser-stable","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"134.0.6998.165-1.mga9.tainted"}]}],"ecosystem_specific":{"section":"tainted"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0137.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}