http://bugzilla.opensuse.org/show_bug.cgi?id=1205871 Bug ID: 1205871 Summary: VUL-0: chromium: multiple security issues fixed in 108.0.5359.71 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.4 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: abergmann@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desk... - High CVE-2022-4174: Type Confusion in V8. - High CVE-2022-4175: Use after free in Camera Capture. - High CVE-2022-4176: Out of bounds write in Lacros Graphics. - High CVE-2022-4177: Use after free in Extensions. - High CVE-2022-4178: Use after free in Mojo. - High CVE-2022-4179: Use after free in Audio. - High CVE-2022-4180: Use after free in Mojo. - High CVE-2022-4181: Use after free in Forms. - Medium CVE-2022-4182: Inappropriate implementation in Fenced Frames. - Medium CVE-2022-4183: Insufficient policy enforcement in Popup Blocker. - Medium CVE-2022-4184: Insufficient policy enforcement in Autofill. - Medium CVE-2022-4185: Inappropriate implementation in Navigation. - Medium CVE-2022-4186: Insufficient validation of untrusted input in Downloads. - Medium CVE-2022-4187: Insufficient policy enforcement in DevTools. - Medium CVE-2022-4188: Insufficient validation of untrusted input in CORS. - Medium CVE-2022-4189: Insufficient policy enforcement in DevTools. - Medium CVE-2022-4190: Insufficient data validation in Directory. - Medium CVE-2022-4191: Use after free in Sign-In. - Medium CVE-2022-4192: Use after free in Live Caption. - Medium CVE-2022-4193: Insufficient policy enforcement in File System API. - Medium CVE-2022-4194: Use after free in Accessibility. - Medium CVE-2022-4195: Insufficient policy enforcement in Safe Browsing. -- You are receiving this mail because: You are on the CC list for the bug.