VuXML: chromium -- security fixes

VuXML ID	cffe1232-e4b3-4c72-8b4c-6a8298c9b289
Discovery	2026-06-11
Entry	2026-06-15

Chrome Releases reports:

This update includes 33 security fixes:

[516496659] Critical CVE-2026-12437: Use after free in WebShare.

[516947912] Critical CVE-2026-12438: Inappropriate implementation in WebView.

[519728275] Critical CVE-2026-12439: Use after free in Digital Credentials.

[519731619] Critical CVE-2026-12440: Use after free in DigitalCredentials.

[520157118] Critical CVE-2026-12441: Use after free in File Input.

[521950423] Critical CVE-2026-12442: Use after free in Passwords.

[522566295] Critical CVE-2026-12443: Use after free in Web Authentication.

[513160088] High CVE-2026-12444: Out of bounds read in Chromoting.

[513199795] High CVE-2026-12445: Use after free in Extensions.

[513313107] High CVE-2026-12446: Insufficient data validation in Passwords.

[513405023] High CVE-2026-12447: Heap buffer overflow in WebRTC.

[513458233] High CVE-2026-12448: Inappropriate implementation in WebView.

[513480539] High CVE-2026-12449: Use after free in Chromoting.

[514531776] High CVE-2026-12450: Inappropriate implementation in Media.

[514741076] High CVE-2026-12451: Use after free in DigitalCredentials.

[515462244] High CVE-2026-12452: Use after free in Downloads.

[516448843] High CVE-2026-12453: Insufficient validation of untrusted input in Input.

[516926968] High CVE-2026-12454: Race in Safe Browsing.

[517069848] High CVE-2026-12455: Use after free in Tab Strip.

[517124587] High CVE-2026-12456: Insufficient validation of untrusted input in Extensions.

[517153117] High CVE-2026-12457: Insufficient data validation in Extensions.

[517258337] High CVE-2026-12458: Incorrect security UI in Passwords.

[517406035] High CVE-2026-12459: Inappropriate implementation in Serial.

[517484284] High CVE-2026-12460: Insufficient policy enforcement in File System Access.

[517727318] High CVE-2026-12461: Out of bounds read in WebRTC.

[517916024] High CVE-2026-12462: Use after free in Media.

[518042749] High CVE-2026-12463: Inappropriate implementation in Views.

[519358344] High CVE-2026-12464: Use after free in Browser.

[520189702] High CVE-2026-12465: Insufficient validation of untrusted input in Metrics.

[520199394] High CVE-2026-12466: Heap buffer overflow in WebRTC.

[520202726] High CVE-2026-12467: Use after free in Extensions.

[521485244] High CVE-2026-12468: Inappropriate implementation in Updater.

[521618871] High CVE-2026-12469: Uninitialized Use in GPU.

[source]

CVE Name	CVE-2026-12437
CVE Name	CVE-2026-12438
CVE Name	CVE-2026-12439
CVE Name	CVE-2026-12440
CVE Name	CVE-2026-12441
CVE Name	CVE-2026-12442
CVE Name	CVE-2026-12443
CVE Name	CVE-2026-12444
CVE Name	CVE-2026-12445
CVE Name	CVE-2026-12446
CVE Name	CVE-2026-12447
CVE Name	CVE-2026-12448
CVE Name	CVE-2026-12449
CVE Name	CVE-2026-12450
CVE Name	CVE-2026-12451
CVE Name	CVE-2026-12452
CVE Name	CVE-2026-12453
CVE Name	CVE-2026-12454
CVE Name	CVE-2026-12455
CVE Name	CVE-2026-12456
CVE Name	CVE-2026-12457
CVE Name	CVE-2026-12458
CVE Name	CVE-2026-12459
CVE Name	CVE-2026-12460
CVE Name	CVE-2026-12461
CVE Name	CVE-2026-12462
CVE Name	CVE-2026-12463
CVE Name	CVE-2026-12464
CVE Name	CVE-2026-12465
CVE Name	CVE-2026-12466
CVE Name	CVE-2026-12467
CVE Name	CVE-2026-12468
CVE Name	CVE-2026-12469
URL	https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_01750511403.html

chromium -- security fixes

Details

References