openSUSE-SU-2022:10177-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:10177-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2022:10177-1
- Related
- Published
- 2022-10-31T08:31:03Z
- Modified
- 2022-10-31T08:31:03Z
- Summary
- Security update for chromium
- Details
-
This update for chromium fixes the following issues:
Chromium 107.0.5304.87 (boo#1204819)
- CVE-2022-3723: Type Confusion in V8
Chromium 107.0.5304.68 (boo#1204732)
- CVE-2022-3652: Type Confusion in V8
- CVE-2022-3653: Heap buffer overflow in Vulkan
- CVE-2022-3654: Use after free in Layout
- CVE-2022-3655: Heap buffer overflow in Media Galleries
- CVE-2022-3656: Insufficient data validation in File System
- CVE-2022-3657: Use after free in Extensions
- CVE-2022-3658: Use after free in Feedback service on Chrome OS
- CVE-2022-3659: Use after free in Accessibility
- CVE-2022-3660: Inappropriate implementation in Full screen mode
- CVE-2022-3661: Insufficient data validation in Extensions
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C5ZTHS4CVKMHGRNVO5FNFQEVHUH3FEZU/
- https://bugzilla.suse.com/1204732
- https://bugzilla.suse.com/1204819
- https://www.suse.com/security/cve/CVE-2022-3652
- https://www.suse.com/security/cve/CVE-2022-3653
- https://www.suse.com/security/cve/CVE-2022-3654
- https://www.suse.com/security/cve/CVE-2022-3655
- https://www.suse.com/security/cve/CVE-2022-3656
- https://www.suse.com/security/cve/CVE-2022-3657
- https://www.suse.com/security/cve/CVE-2022-3658
- https://www.suse.com/security/cve/CVE-2022-3659
- https://www.suse.com/security/cve/CVE-2022-3660
- https://www.suse.com/security/cve/CVE-2022-3661
- https://www.suse.com/security/cve/CVE-2022-3723
Affected packages
SUSE:Package Hub 15 SP3 / chromium
Package
- Name
- chromium
- Purl
- purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3