Bug ID 1222260
Summary VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 123.0.6312.105
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.5
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee m.szczepaniak.000@gmail.com
Reporter abergmann@suse.com
QA Contact security-team@suse.de
Target Milestone ---
Found By ---
Blocker --- 

https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop.html

Stable Channel Update for Desktop
Tuesday, April 2, 2024

The Stable channel has been updated to 123.0.6312.105/.106/.107 for Windows and
Mac and 123.0.6312.105 to Linux which will roll out over the coming days/weeks.
A full list of changes in this build is available in the Log.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority
of users are updated with a fix. We will also retain restrictions if the bug
exists in a third party library that other projects similarly depend on, but
haven’t yet fixed.

This update includes 3 security fixes. Below, we highlight fixes that were
contributed by external researchers. Please see the Chrome Security Page for
more information.

High CVE-2024-3156: Inappropriate implementation in V8
High CVE-2024-3158: Use after free in Bookmarks
High CVE-2024-3159: Out of bounds memory access in V8


For detailed information, please look into the official Chrome release
announcement.

You are receiving this mail because: