openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0059-1 Rating: important References: #1237121 Cross-References: CVE-2025-0995 CVE-2025-0996 CVE-2025-0997 CVE-2025-0998 Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium 133.0.6943.98 (boo#1237121): - CVE-2025-0995: Use after free in V8 - CVE-2025-0996: Inappropriate implementation in Browser UI - CVE-2025-0997: Use after free in Navigation - CVE-2025-0998: Out of bounds memory access in V8 Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2025-59=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 x86_64): chromedriver-133.0.6943.98-bp156.2.81.2 chromium-133.0.6943.98-bp156.2.81.2 References: https://www.suse.com/security/cve/CVE-2025-0995.html https://www.suse.com/security/cve/CVE-2025-0996.html https://www.suse.com/security/cve/CVE-2025-0997.html https://www.suse.com/security/cve/CVE-2025-0998.html https://bugzilla.suse.com/1237121