MGASA-2024-0196

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2024-0196.html

Import Source

https://advisories.mageia.org/MGASA-2024-0196.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2024-0196

Related

CVE-2024-5274

Published

2024-05-27T21:11:03Z

Modified

2024-05-27T21:07:26Z

Summary

Updated chromium-browser-stable packages fix security vulnerabilities

Details

The chromium-browser-stable package has been updated to the 125.0.6422.112 release. It includes 1 security fix. * High CVE-2024-5274: Type Confusion in V8. Reported by ClÃ©ment Lecigne of Google's Threat Analysis Group and Brendon Tiszka of Chrome Security on 2024-05-20 Google is aware that an exploit for CVE-2024-5274 exists in the wild. Please, do note, that since some versions ago, only x86_64 is supported. i586 support for linux was stopped some years ago and the community is not able to provide patches anymore for the latest Chromium code.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / chromium-browser-stable

Package

Name: chromium-browser-stable
Purl: pkg:rpm/mageia/chromium-browser-stable?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

125.0.6422.112-1.mga9.tainted

Ecosystem specific

{
    "section": "tainted"
}