CVE-2025-5283

NameCVE-2025-5283
DescriptionUse after free in libvpx in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-4191-1, DSA-5926-1, DSA-5928-1, DSA-5929-1
Debian Bugs1106689

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
chromium (PTS)bullseye (security), bullseye120.0.6099.224-1~deb11u1vulnerable
bookworm135.0.7049.95-1~deb12u1vulnerable
bookworm (security)137.0.7151.55-3~deb12u1fixed
trixie136.0.7103.113-1vulnerable
sid137.0.7151.55-3fixed
firefox (PTS)sid139.0-1fixed
firefox-esr (PTS)bullseye115.14.0esr-1~deb11u1vulnerable
bullseye (security)128.11.0esr-1~deb11u1fixed
bookworm128.10.0esr-1~deb12u1vulnerable
bookworm (security)128.11.0esr-1~deb12u1fixed
trixie128.10.1esr-1vulnerable
sid128.11.0esr-1fixed
libvpx (PTS)bullseye (security), bullseye1.9.0-1+deb11u3vulnerable
bookworm1.12.0-1+deb12u3vulnerable
bookworm (security)1.12.0-1+deb12u4fixed
trixie1.15.0-2vulnerable
sid1.15.0-2.1fixed
thunderbird (PTS)bullseye1:115.12.0-1~deb11u1vulnerable
bullseye (security)1:128.11.0esr-1~deb11u1vulnerable
bookworm1:128.10.0esr-1~deb12u1vulnerable
bookworm (security)1:128.10.1esr-1~deb12u1vulnerable
trixie1:128.10.0esr-1vulnerable
sid1:128.11.0esr-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
chromiumsourcebullseye(unfixed)end-of-life
chromiumsourcebookworm137.0.7151.55-3~deb12u1DSA-5929-1
chromiumsource(unstable)137.0.7151.55-1
firefoxsource(unstable)139.0-1
firefox-esrsourcebullseye128.11.0esr-1~deb11u1DLA-4191-1
firefox-esrsourcebookworm128.11.0esr-1~deb12u1DSA-5926-1
firefox-esrsource(unstable)128.11.0esr-1
libvpxsourcebookworm1.12.0-1+deb12u4DSA-5928-1
libvpxsource(unstable)1.15.0-2.11106689
thunderbirdsource(unstable)1:128.11.0esr-1

Notes

[bullseye] - chromium <end-of-life> (see #1061268)
Fixed by: https://chromium.googlesource.com/webm/libvpx/+/1c758781c428c0e895645b95b8ff1512b6bdcecb
https://www.mozilla.org/en-US/security/advisories/mfsa2025-42/#CVE-2025-5283
https://www.mozilla.org/en-US/security/advisories/mfsa2025-44/#CVE-2025-5283
https://www.mozilla.org/en-US/security/advisories/mfsa2025-46/#CVE-2025-5283
Search for package or bug name: Reporting problems