[Bug 1205221] New: VUL-0: chromium: multiple security issues fixed in 107.0.5304.110
https://bugzilla.suse.com/show_bug.cgi?id=1205221 Bug ID: 1205221 Summary: VUL-0: chromium: multiple security issues fixed in 107.0.5304.110 Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: gmbr3@opensuse.org Reporter: rfrohl@suse.com QA Contact: qa-bugs@suse.de CC: Andreas.Stieger@gmx.de Found By: --- Blocker: --- CVE-2022-3885: Use after free in V8. Reported by gzobqq@ on 2022-10-24 CVE-2022-3886: Use after free in Speech Recognition. Reported by anonymous on 2022-10-10 CVE-2022-3887: Use after free in Web Workers. Reported by anonymous on 2022-10-08 CVE-2022-3888: Use after free in WebCodecs. Reported by Peter Nemeth on 2022-10-16 CVE-2022-3889: Type Confusion in V8. Reported by anonymous on 2022-11-01 CVE-2022-3890: Heap buffer overflow in Crashpad. Reported by anonymous on 2022-11-01 https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desk... -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1205221 Robert Frohl <rfrohl@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- URL| |https://smash.suse.de/issue | |/347475/ -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1205221 Maintenance Automation <maint-coord+maintenance-robot@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1205221 https://bugzilla.suse.com/show_bug.cgi?id=1205221#c3 --- Comment #3 from Swamp Workflow Management <swamp@suse.de> --- openSUSE-SU-2022:10201-1: An update that fixes 6 vulnerabilities is now available. Category: security (important) Bug References: 1205221 CVE References: CVE-2022-3885,CVE-2022-3886,CVE-2022-3887,CVE-2022-3888,CVE-2022-3889,CVE-2022-3890 JIRA References: Sources used: openSUSE Backports SLE-15-SP4 (src): chromium-107.0.5304.110-bp154.2.43.1 openSUSE Backports SLE-15-SP3 (src): chromium-107.0.5304.110-bp153.2.136.1 -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com