Detections
Analytics

Debian dsa-6337 : chromium - security update

medium Nessus Plugin ID 320492

Synopsis

The remote Debian host is missing one or more security-related updates.

Description

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6337 advisory.

 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6337-1 [email protected] https://www.debian.org/security/ Andres Salomon June 10, 2026 https://www.debian.org/security/faq
 - -------------------------------------------------------------------------

 Package : chromium CVE ID : CVE-2026-11628 CVE-2026-11629 CVE-2026-11630 CVE-2026-11631 CVE-2026-11632 CVE-2026-11633 CVE-2026-11634 CVE-2026-11635 CVE-2026-11636 CVE-2026-11637 CVE-2026-11638 CVE-2026-11639 CVE-2026-11640 CVE-2026-11641 CVE-2026-11642 CVE-2026-11643 CVE-2026-11644 CVE-2026-11645 CVE-2026-11646 CVE-2026-11647 CVE-2026-11648 CVE-2026-11649 CVE-2026-11650 CVE-2026-11651 CVE-2026-11652 CVE-2026-11653 CVE-2026-11654 CVE-2026-11655 CVE-2026-11656 CVE-2026-11657 CVE-2026-11658 CVE-2026-11659 CVE-2026-11660 CVE-2026-11661 CVE-2026-11662 CVE-2026-11663 CVE-2026-11664 CVE-2026-11665 CVE-2026-11666 CVE-2026-11667 CVE-2026-11668 CVE-2026-11669 CVE-2026-11670 CVE-2026-11671 CVE-2026-11672 CVE-2026-11673 CVE-2026-11674 CVE-2026-11675 CVE-2026-11676 CVE-2026-11677 CVE-2026-11678 CVE-2026-11679 CVE-2026-11680 CVE-2026-11681 CVE-2026-11682 CVE-2026-11683 CVE-2026-11684 CVE-2026-11685 CVE-2026-11686 CVE-2026-11687 CVE-2026-11688 CVE-2026-11689 CVE-2026-11690 CVE-2026-11691 CVE-2026-11692 CVE-2026-11693 CVE-2026-11694 CVE-2026-11695 CVE-2026-11696 CVE-2026-11697 CVE-2026-11698 CVE-2026-11699 CVE-2026-11700 CVE-2026-11701

 Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

 For the oldstable distribution (bookworm), these problems have been fixed in version 149.0.7827.102-1~deb12u1.

 For the stable distribution (trixie), these problems have been fixed in version 149.0.7827.102-1~deb13u1.

 We recommend that you upgrade your chromium packages.

 For the detailed security status of chromium please refer to its security tracker page at:
 https://security-tracker.debian.org/tracker/chromium

 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

 Mailing list: [email protected]

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade the chromium packages.

See Also

https://security-tracker.debian.org/tracker/CVE-2026-11649

https://security-tracker.debian.org/tracker/CVE-2026-11650

https://security-tracker.debian.org/tracker/CVE-2026-11651

https://security-tracker.debian.org/tracker/CVE-2026-11652

https://security-tracker.debian.org/tracker/CVE-2026-11653

https://security-tracker.debian.org/tracker/CVE-2026-11654

https://security-tracker.debian.org/tracker/CVE-2026-11655

https://security-tracker.debian.org/tracker/CVE-2026-11656

https://security-tracker.debian.org/tracker/CVE-2026-11657

https://security-tracker.debian.org/tracker/CVE-2026-11658

https://security-tracker.debian.org/tracker/CVE-2026-11659

https://security-tracker.debian.org/tracker/CVE-2026-11660

https://security-tracker.debian.org/tracker/CVE-2026-11661

https://security-tracker.debian.org/tracker/CVE-2026-11662

https://security-tracker.debian.org/tracker/CVE-2026-11663

https://security-tracker.debian.org/tracker/CVE-2026-11664

https://security-tracker.debian.org/tracker/CVE-2026-11665

https://security-tracker.debian.org/tracker/CVE-2026-11666

https://security-tracker.debian.org/tracker/CVE-2026-11667

https://security-tracker.debian.org/tracker/CVE-2026-11668

https://security-tracker.debian.org/tracker/CVE-2026-11669

https://security-tracker.debian.org/tracker/CVE-2026-11670

https://security-tracker.debian.org/tracker/CVE-2026-11671

https://security-tracker.debian.org/tracker/CVE-2026-11672

https://security-tracker.debian.org/tracker/CVE-2026-11673

https://security-tracker.debian.org/tracker/CVE-2026-11674

https://security-tracker.debian.org/tracker/CVE-2026-11675

https://security-tracker.debian.org/tracker/CVE-2026-11676

https://security-tracker.debian.org/tracker/CVE-2026-11677

https://security-tracker.debian.org/tracker/CVE-2026-11678

https://security-tracker.debian.org/tracker/CVE-2026-11679

https://security-tracker.debian.org/tracker/CVE-2026-11680

https://security-tracker.debian.org/tracker/CVE-2026-11681

https://security-tracker.debian.org/tracker/CVE-2026-11682

https://security-tracker.debian.org/tracker/CVE-2026-11683

https://security-tracker.debian.org/tracker/CVE-2026-11684

https://security-tracker.debian.org/tracker/CVE-2026-11685

https://security-tracker.debian.org/tracker/CVE-2026-11686

https://security-tracker.debian.org/tracker/CVE-2026-11687

https://security-tracker.debian.org/tracker/CVE-2026-11688

https://security-tracker.debian.org/tracker/CVE-2026-11689

https://security-tracker.debian.org/tracker/CVE-2026-11690

https://security-tracker.debian.org/tracker/CVE-2026-11691

https://security-tracker.debian.org/tracker/CVE-2026-11692

https://security-tracker.debian.org/tracker/CVE-2026-11693

https://security-tracker.debian.org/tracker/CVE-2026-11694

https://security-tracker.debian.org/tracker/CVE-2026-11695

https://security-tracker.debian.org/tracker/CVE-2026-11696

https://security-tracker.debian.org/tracker/source-package/chromium

https://security-tracker.debian.org/tracker/CVE-2026-11628

https://security-tracker.debian.org/tracker/CVE-2026-11629

https://security-tracker.debian.org/tracker/CVE-2026-11630

https://security-tracker.debian.org/tracker/CVE-2026-11631

https://security-tracker.debian.org/tracker/CVE-2026-11632

https://security-tracker.debian.org/tracker/CVE-2026-11633

https://security-tracker.debian.org/tracker/CVE-2026-11634

https://security-tracker.debian.org/tracker/CVE-2026-11635

https://security-tracker.debian.org/tracker/CVE-2026-11636

https://security-tracker.debian.org/tracker/CVE-2026-11637

https://security-tracker.debian.org/tracker/CVE-2026-11638

https://security-tracker.debian.org/tracker/CVE-2026-11639

https://security-tracker.debian.org/tracker/CVE-2026-11640

https://security-tracker.debian.org/tracker/CVE-2026-11641

https://security-tracker.debian.org/tracker/CVE-2026-11642

https://security-tracker.debian.org/tracker/CVE-2026-11643

https://security-tracker.debian.org/tracker/CVE-2026-11644

https://security-tracker.debian.org/tracker/CVE-2026-11645

https://security-tracker.debian.org/tracker/CVE-2026-11646

https://security-tracker.debian.org/tracker/CVE-2026-11647

https://security-tracker.debian.org/tracker/CVE-2026-11648

https://security-tracker.debian.org/tracker/CVE-2026-11697

https://security-tracker.debian.org/tracker/CVE-2026-11698

https://security-tracker.debian.org/tracker/CVE-2026-11699

https://security-tracker.debian.org/tracker/CVE-2026-11700

https://security-tracker.debian.org/tracker/CVE-2026-11701

https://packages.debian.org/source/bookworm/chromium

https://packages.debian.org/source/trixie/chromium

Plugin Details

Severity: Medium

ID: 320492

File Name: debian_DSA-6337.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 6/11/2026

Updated: 6/11/2026

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.2

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:C/A:N

CVSS Score Source: CVE-2026-11658

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:chromium-headless-shell, p-cpe:/a:debian:debian_linux:chromium-sandbox, p-cpe:/a:debian:debian_linux:chromium-driver, cpe:/o:debian:debian_linux:13.0, p-cpe:/a:debian:debian_linux:chromium-common, p-cpe:/a:debian:debian_linux:chromium-l10n, p-cpe:/a:debian:debian_linux:chromium-shell, p-cpe:/a:debian:debian_linux:chromium, cpe:/o:debian:debian_linux:12.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 6/10/2026

Vulnerability Publication Date: 6/8/2026

CISA Known Exploited Vulnerability Due Dates: 6/23/2026

Reference Information

CVE: CVE-2026-11628, CVE-2026-11629, CVE-2026-11630, CVE-2026-11631, CVE-2026-11632, CVE-2026-11633, CVE-2026-11634, CVE-2026-11635, CVE-2026-11636, CVE-2026-11637, CVE-2026-11638, CVE-2026-11639, CVE-2026-11640, CVE-2026-11641, CVE-2026-11642, CVE-2026-11643, CVE-2026-11644, CVE-2026-11645, CVE-2026-11646, CVE-2026-11647, CVE-2026-11648, CVE-2026-11649, CVE-2026-11650, CVE-2026-11651, CVE-2026-11652, CVE-2026-11653, CVE-2026-11654, CVE-2026-11655, CVE-2026-11656, CVE-2026-11657, CVE-2026-11658, CVE-2026-11659, CVE-2026-11660, CVE-2026-11661, CVE-2026-11662, CVE-2026-11663, CVE-2026-11664, CVE-2026-11665, CVE-2026-11666, CVE-2026-11667, CVE-2026-11668, CVE-2026-11669, CVE-2026-11670, CVE-2026-11671, CVE-2026-11672, CVE-2026-11673, CVE-2026-11674, CVE-2026-11675, CVE-2026-11676, CVE-2026-11677, CVE-2026-11678, CVE-2026-11679, CVE-2026-11680, CVE-2026-11681, CVE-2026-11682, CVE-2026-11683, CVE-2026-11684, CVE-2026-11685, CVE-2026-11686, CVE-2026-11687, CVE-2026-11688, CVE-2026-11689, CVE-2026-11690, CVE-2026-11691, CVE-2026-11692, CVE-2026-11693, CVE-2026-11694, CVE-2026-11695, CVE-2026-11696, CVE-2026-11697, CVE-2026-11698, CVE-2026-11699, CVE-2026-11700, CVE-2026-11701