Description
Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-06-04
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use-after-free flaw exists in the Ozone component of Google Chrome on Linux, where a crafted HTML page can trigger a dangling pointer in memory. This bug enables a remote attacker to potentially break the browser's sandbox and execute code with higher privileges. The nature of the vulnerability is an invalid memory access leading to an arbitrary code execution scenario beyond the browser process.

Affected Systems

Google Chrome browsers running on Linux platforms with a version earlier than 149.0.7827.53 are affected. Users of the stable channel are at risk until they upgrade to the patched release or later.

Risk and Exploitability

The issue is listed as high severity by Chromium Security with no EPSS score available and it is not listed in the CISA KEV catalog. Attackers would need to supply a malicious HTML page that the user opens or visits, after which the use-after-free condition could be triggered and the sandbox bypassed. Given the lack of exploitation data, the exact likelihood is uncertain, but the potential impact of allowing privileged code execution in a desktop environment justifies treating it as a critical risk that must be mitigated promptly.

Generated by OpenCVE AI on June 5, 2026 at 03:09 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 149.0.7827.53 or later.
  • Ensure automatic updates are enabled so the patch is applied promptly.
  • Restrict access to untrusted web content by using a content filtering policy or a browser extension that blocks malicious HTML attachments.

Generated by OpenCVE AI on June 5, 2026 at 03:09 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 04:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Fri, 05 Jun 2026 03:30:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free Vulnerability in Chrome Ozone Allows Sandbox Escape on Linux

Thu, 04 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Use after free in Ozone in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Weaknesses CWE-416
References

Subscriptions

Google Chrome
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-04T23:04:02.539Z

Reserved: 2026-06-04T17:06:19.167Z

Link: CVE-2026-10972

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-04T23:17:00.400

Modified: 2026-06-04T23:17:00.400

Link: CVE-2026-10972

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T04:15:25Z

Weaknesses