Description
Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
Published: 2026-06-08
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a use‑after‑free in the Ozone graphics system of Google Chrome. A crafted HTML page can trigger heap corruption, potentially allowing an attacker to execute arbitrary code on the system. This flaw maps to CWE‑416 and is rated as Critical by Chromium’s own severity scale.

Affected Systems

Google Chrome versions prior to 149.0.7827.103 are affected when using the Ozone backend. Any user running those versions on a desktop platform is at risk.

Risk and Exploitability

The issue is a classic memory corruption bug that, when triggered by malicious web content, could give an attacker code execution privileges on the affected machine. The CVSS score is 8.8, indicating high severity. The EPSS score is not available and the vulnerability is not listed in CISA KEV, but the critical severity and the ability to trigger it via a web page make it a high‑risk vulnerability. An attacker would need to lure a user to a malicious page; no known network‑only exploitation vector is reported.

Generated by OpenCVE AI on June 9, 2026 at 12:55 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install Chrome version 149.0.7827.103 or newer to eliminate the use‑after‑free bug.
  • If an update cannot be applied immediately, restrict the use of the Ozone backend by disabling GPU acceleration or switching to an alternative graphics back‑end where possible.
  • Enforce strict browser update policies across the organization and monitor for any new mitigations or patches published by Google.
  • Avoid visiting untrusted or suspicious websites until the browser update has been applied.

Generated by OpenCVE AI on June 9, 2026 at 12:55 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 09 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Tue, 09 Jun 2026 13:15:00 +0000

Type Values Removed Values Added
Title Use After Free Leading to Heap Corruption in Chrome Ozone

Tue, 09 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 09 Jun 2026 00:45:00 +0000

Type Values Removed Values Added
Title Use After Free Leading to Heap Corruption in Chrome Ozone
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Mon, 08 Jun 2026 23:45:00 +0000

Type Values Removed Values Added
Description Use after free in Ozone in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
Weaknesses CWE-416
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-10T03:58:10.915Z

Reserved: 2026-06-08T21:33:31.817Z

Link: CVE-2026-11629

cve-icon Vulnrichment

Updated: 2026-06-09T10:27:58.932Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-09T00:16:45.393

Modified: 2026-06-09T14:52:32.440

Link: CVE-2026-11629

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T13:00:05Z

Weaknesses