Description
Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Published: 2026-06-30
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use after free flaw in Chrome’s Ozone platform on Linux creates a heap corruption vulnerability. When a crafted HTML page causes the browser to perform specific user interface gestures, the corrupted heap can be leveraged to alter code execution flow. The description highlights the vulnerability’s potential for remote exploitation through user interaction, though it does not confirm code execution in every case.

Affected Systems

All Linux installations of Google Chrome prior to version 150.0.7871.47 are affected, because Ozone is used by these builds. The flaw is confined to the Chrome product and does not impact the operating system directly.

Risk and Exploitability

The CVE is rated Medium in Chromium’s internal severity scale, but no publicly available CVSS score is supplied and EPSS data is unavailable. The attacker must persuade a user to carry out certain UI actions, which limits attack breadth but still offers a pathway for heap corruption. CISA KEV lists the vulnerability as not yet exploited. The risk is moderate: the absence of an exploit in the wild reduces immediate threat, yet the vulnerability is capable of enabling remote code execution if the conditions are met.

Generated by OpenCVE AI on July 1, 2026 at 02:13 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Google Chrome to version 150.0.7871.47 or later.
  • If an update is not immediately feasible, disable the Ozone backend by starting Chrome with the --disable-features=Ozone flag or setting the related environment variable to prevent the use of the affected component.
  • Until the issue is patched, exercise caution when opening untrusted web pages and avoid interacting with UI elements that have not been verified as safe.

Generated by OpenCVE AI on July 1, 2026 at 02:13 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 02:30:00 +0000

Type Values Removed Values Added
Title Use After Free in Ozone Allows Heap Corruption in Chrome on Linux

Tue, 30 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Use after free in Ozone in Google Chrome on Linux prior to 150.0.7871.47 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Weaknesses CWE-416
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-30T22:39:00.157Z

Reserved: 2026-06-29T23:04:20.898Z

Link: CVE-2026-14024

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T02:15:07Z

Weaknesses