[Bug 1228628] New: VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 127.0.6533.88
https://bugzilla.suse.com/show_bug.cgi?id=1228628 Bug ID: 1228628 Summary: VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 127.0.6533.88 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.6 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: gmbr3@opensuse.org Reporter: gianluca.gabrielli@suse.com QA Contact: qa-bugs@suse.de CC: security-team@suse.de Target Milestone: --- Found By: --- Blocker: --- Critical CVE-2024-6990: Uninitialized Use in Dawn. Reported by gelatin dessert on 2024-07-15 High CVE-2024-7255: Out of bounds read in WebTransport. Reported by Marten Richter on 2024-07-13 High CVE-2024-7256: Insufficient data validation in Dawn. Reported by gelatin dessert on 2024-07-23 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1228628 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1228628 https://bugzilla.suse.com/show_bug.cgi?id=1228628#c4 --- Comment #4 from Marcus Meissner <meissner@suse.com> --- openSUSE-SU-2024:0254-1: An update that fixes 25 vulnerabilities is now available. Category: security (important) Bug References: 1228628,1228940,1228941,1228942 CVE References: CVE-2024-6988,CVE-2024-6989,CVE-2024-6990,CVE-2024-6991,CVE-2024-6992,CVE-2024-6993,CVE-2024-6994,CVE-2024-6995,CVE-2024-6996,CVE-2024-6997,CVE-2024-6998,CVE-2024-6999,CVE-2024-7000,CVE-2024-7001,CVE-2024-7003,CVE-2024-7004,CVE-2024-7005,CVE-2024-7255,CVE-2024-7256,CVE-2024-7532,CVE-2024-7533,CVE-2024-7534,CVE-2024-7535,CVE-2024-7536,CVE-2024-7550 JIRA References: Sources used: openSUSE Backports SLE-15-SP5 (src): chromium-127.0.6533.119-bp155.2.102.1, gn-0.20240730-bp155.5.6.1, rust-bindgen-0.69.1-bp155.2.1 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1228628 https://bugzilla.suse.com/show_bug.cgi?id=1228628#c6 --- Comment #6 from Marcus Meissner <meissner@suse.com> --- openSUSE-SU-2024:0254-2: An update that fixes 25 vulnerabilities is now available. Category: security (important) Bug References: 1228628,1228940,1228941,1228942 CVE References: CVE-2024-6988,CVE-2024-6989,CVE-2024-6990,CVE-2024-6991,CVE-2024-6992,CVE-2024-6993,CVE-2024-6994,CVE-2024-6995,CVE-2024-6996,CVE-2024-6997,CVE-2024-6998,CVE-2024-6999,CVE-2024-7000,CVE-2024-7001,CVE-2024-7003,CVE-2024-7004,CVE-2024-7005,CVE-2024-7255,CVE-2024-7256,CVE-2024-7532,CVE-2024-7533,CVE-2024-7534,CVE-2024-7535,CVE-2024-7536,CVE-2024-7550 JIRA References: Sources used: openSUSE Backports SLE-15-SP6 (src): chromium-127.0.6533.119-bp156.2.14.1, gn-0.20240730-bp156.2.3.1, rust-bindgen-0.69.1-bp156.2.1 -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com