MGASA-2024-0161

Source
https://advisories.mageia.org/MGASA-2024-0161.html
Import Source
https://advisories.mageia.org/MGASA-2024-0161.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2024-0161
Related
Published
2024-05-09T02:40:29Z
Modified
2024-05-09T00:23:22Z
Summary
Updated chromium-browser-stable packages fix security vulnerabilities
Details

The chromium-browser-stable package has been updated to the 124.0.6367.128 release. It includes 2 security fixes. Please, do note, only x86_64 is supported from now on. i586 support for linux was stopped some years ago and the community is not able to provide patches anymore for the latest Chromium code. Some of the security fixes are: * High CVE-2024-4331: Use after free in Picture In Picture. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-04-16 * High CVE-2024-4368: Use after free in Dawn. Reported by wgslfuzz on 2024-04-09

References
Credits

Affected packages

Mageia:9 / chromium-browser-stable

Package

Name
chromium-browser-stable
Purl
pkg:rpm/mageia/chromium-browser-stable?distro=mageia-9

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
124.0.6367.118-1.mga9.tainted

Ecosystem specific

{
    "section": "tainted"
}