Skip to main content
Skip table of contents

ISN 2025-48 Chromium Vulnerabilities

First published 12 November 2025

CVSS:3.1: n/a (High)

CVSS:3.1 vector n/a

Summary

Several security vulnerabilities have been found in Chromium, a web browser used in IGEL OS. This affects the following product versions:

  • IGEL OS 12

  • IGEL OS 11

Details

Multiple issues rated as high have been discovered in V8, Chromium’s JavaScript engine: A type confusion (CVE-2025-12428), a race condition (CVE-2025-12432), and three inappropriate implementations (CVE-2025-12429, CVE-2025-12433, and CVE-2025-12036).

Further vulnerabilities are an object lifecycle issue in the Media component (CVE-2025-12430), a use-after-free in Safe Browsing (CVE-2025-11756), and an inappropriate implementation in Extensions (CVE-2025-12431). These are also rated high.

Update Instructions

  • OS 12: Update to the Chromium app in version 142.0.7444.59 or newer when available from the IGEL App Portal.

  • OS 11: Update to OS version 11.11.100 when available.

References

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close