https://bugzilla.suse.com/show_bug.cgi?id=1227979 Bug ID: 1227979 Summary: VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 126.0.6478.182 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.5 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: gmbr3@opensuse.org Reporter: rfrohl@suse.com QA Contact: qa-bugs@suse.de CC: Andreas.Stieger@gmx.de, m.szczepaniak.000@gmail.com Target Milestone: --- Found By: --- Blocker: --- The Stable channel has been updated to 126.0.6478.182/183 for Windows, Mac and 126.0.6478.182 for Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. - High CVE-2024-6772: Inappropriate implementation in V8. Reported by 5fceb6172bbf7e2c5a948183b53565b9 on 2024-06-12 - High CVE-2024-6773: Type Confusion in V8. Reported by 2ourc3 | Salim Largo on 2024-06-17 - High CVE-2024-6774: Use after free in Screen Capture. Reported by lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-06-13 - High CVE-2024-6775: Use after free in Media Stream. Reported by Anonymous on 2024-06-15 - High CVE-2024-6776: Use after free in Audio. Reported by lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-06-12 - High CVE-2024-6777: Use after free in Navigation. Reported by Sven Dysthe (@svn-dys) on 2024-06-07 - High CVE-2024-6778: Race in DevTools. Reported by Allen Ding on 2024-05-16 - High CVE-2024-6779: Out of bounds memory access in V8. Reported by Seunghyun Lee (@0x10n) on 2024-07-06 https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desk... -- You are receiving this mail because: You are on the CC list for the bug.