https://bugzilla.suse.com/show_bug.cgi?id=1222260 Bug ID: 1222260 Summary: VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 123.0.6312.105 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.5 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: m.szczepaniak.000@gmail.com Reporter: abergmann@suse.com QA Contact: security-team@suse.de Target Milestone: --- Found By: --- Blocker: --- https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desk... Stable Channel Update for Desktop Tuesday, April 2, 2024 The Stable channel has been updated to 123.0.6312.105/.106/.107 for Windows and Mac and 123.0.6312.105 to Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed. This update includes 3 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information. High CVE-2024-3156: Inappropriate implementation in V8 High CVE-2024-3158: Use after free in Bookmarks High CVE-2024-3159: Out of bounds memory access in V8 For detailed information, please look into the official Chrome release announcement. -- You are receiving this mail because: You are on the CC list for the bug.