[Bug 1203808] New: VUL-0: chromium: multiple security issues fixed in 106.0.5249.61
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 Bug ID: 1203808 Summary: VUL-0: chromium: multiple security issues fixed in 106.0.5249.61 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.4 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: gmbr3@opensuse.org Reporter: Andreas.Stieger@gmx.de QA Contact: security-team@suse.de Found By: --- Blocker: --- https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desk... * CVE-2022-3304: Use after free in CSS * CVE-2022-3201: Insufficient validation of untrusted input in Developer Tools * CVE-2022-3305: Use after free in Survey * CVE-2022-3306: Use after free in Survey * CVE-2022-3307: Use after free in Media * CVE-2022-3308: Insufficient policy enforcement in Developer Tools * CVE-2022-3309: Use after free in Assistant * CVE-2022-3310: Insufficient policy enforcement in Custom Tabs * CVE-2022-3311: Use after free in Import * CVE-2022-3312: Insufficient validation of untrusted input in VPN * CVE-2022-3313: Incorrect security UI in Full Screen * CVE-2022-3314: Use after free in Logging * CVE-2022-3315: Type confusion in Blink * CVE-2022-3316: Insufficient validation of untrusted input in Safe Browsing * CVE-2022-3317: Insufficient validation of untrusted input in Intents * CVE-2022-3318: Use after free in ChromeOS Notifications -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 http://bugzilla.opensuse.org/show_bug.cgi?id=1203808#c1 Andreas Stieger <Andreas.Stieger@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS CC| |gmbr3@opensuse.org Assignee|gmbr3@opensuse.org |Andreas.Stieger@gmx.de Summary|VUL-0: chromium: multiple |VUL-0: chromium: multiple |security issues fixed in |security issues fixed in |106.0.5249.61 |106.0.5249.91 --- Comment #1 from Andreas Stieger <Andreas.Stieger@gmx.de> --- https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desk... * CVE-2022-3370: Use after free in Custom Elements * CVE-2022-3373: Out of bounds write in V8 -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 http://bugzilla.opensuse.org/show_bug.cgi?id=1203808#c2 --- Comment #2 from OBSbugzilla Bot <bwiedemann+obsbugzillabot@suse.com> --- This is an autogenerated message for OBS integration: This bug (1203808) was mentioned in https://build.opensuse.org/request/show/1007437 Factory / chromium https://build.opensuse.org/request/show/1007438 Backports:SLE-15-SP3 / chromium https://build.opensuse.org/request/show/1007439 Backports:SLE-15-SP4 / chromium -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 Andreas Stieger <Andreas.Stieger@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |Andreas.Stieger@gmx.de Assignee|Andreas.Stieger@gmx.de |security-team@suse.de -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 http://bugzilla.opensuse.org/show_bug.cgi?id=1203808#c3 --- Comment #3 from OBSbugzilla Bot <bwiedemann+obsbugzillabot@suse.com> --- This is an autogenerated message for OBS integration: This bug (1203808) was mentioned in https://build.opensuse.org/request/show/1007548 Backports:SLE-15-SP5 / chromium -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1203808 http://bugzilla.opensuse.org/show_bug.cgi?id=1203808#c6 Andreas Stieger <Andreas.Stieger@gmx.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|IN_PROGRESS |RESOLVED Resolution|--- |FIXED --- Comment #6 from Andreas Stieger <Andreas.Stieger@gmx.de> --- done -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com