Bug ID 1201679
Summary VUL-0: chromium: multiple security issues fixed in 103.0.5060.134
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.4
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee gmbr3@opensuse.org
Reporter gabriele.sonnu@suse.com
QA Contact qa-bugs@suse.de
CC security-team@suse.de
Found By ---
Blocker --- 

This update includes 11 security fixes. Below, we highlight fixes that were
contributed by external researchers. Please see the Chrome Security Page for
more information.

[$16000][1336266] High CVE-2022-2477 : Use after free in Guest View. Reported
by anonymous on 2022-06-14

[$7500][1335861] High CVE-2022-2478 : Use after free in PDF. Reported by
triplepwns on 2022-06-13

[$3000][1329987] High CVE-2022-2479 : Insufficient validation of untrusted
input in File. Reported by anonymous on 2022-05-28

[$NA][1339844] High CVE-2022-2480 : Use after free in Service Worker API.
Reported by Sergei Glazunov of Google Project Zero on 2022-06-27

[$TBD][1341603] High CVE-2022-2481: Use after free in Views. Reported by
YoungJoo Lee(@ashuu_lee) of CompSecLab at Seoul National University on
2022-07-04

[$7000][1308341] Low CVE-2022-2163: Use after free in Cast UI and Toolbar.
Reported by Chaoyuan Peng (@ret2happy) on 2022-03-21

We would also like to thank all security researchers that worked with us during
the development cycle to prevent security bugs from ever reaching the stable
channel.As usual, our ongoing internal security work was responsible for a wide
range of fixes:

[1345513] Various fixes from internal audits, fuzzing and other initiatives

You are receiving this mail because: