openSUSE-SU-2023:0045-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2023:0045-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/openSUSE-SU-2023:0045-1
- Upstream
- Related
- Published
- 2023-02-13T14:41:37Z
- Modified
- 2025-05-08T17:48:17.470447Z
- Summary
- Security update for chromium
- Details
-
This update for chromium fixes the following issues:
Chromium 110.0.5481.77 (boo#1208029):
- CVE-2023-0696: Type Confusion in V8
- CVE-2023-0697: Inappropriate implementation in Full screen mode
- CVE-2023-0698: Out of bounds read in WebRTC
- CVE-2023-0699: Use after free in GPU
- CVE-2023-0700: Inappropriate implementation in Download
- CVE-2023-0701: Heap buffer overflow in WebUI
- CVE-2023-0702: Type Confusion in Data Transfer
- CVE-2023-0703: Type Confusion in DevTools
- CVE-2023-0704: Insufficient policy enforcement in DevTools
- CVE-2023-0705: Integer overflow in Core
Various fixes from internal audits, fuzzing and other initiatives
- build with bundled libavif
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2ZUPRNYY3OQIIYHF4EDZBQMHP655Z7MA/
- https://bugzilla.suse.com/1208029
- https://www.suse.com/security/cve/CVE-2023-0696
- https://www.suse.com/security/cve/CVE-2023-0697
- https://www.suse.com/security/cve/CVE-2023-0698
- https://www.suse.com/security/cve/CVE-2023-0699
- https://www.suse.com/security/cve/CVE-2023-0700
- https://www.suse.com/security/cve/CVE-2023-0701
- https://www.suse.com/security/cve/CVE-2023-0702
- https://www.suse.com/security/cve/CVE-2023-0703
- https://www.suse.com/security/cve/CVE-2023-0704
- https://www.suse.com/security/cve/CVE-2023-0705
Affected packages
SUSE:Package Hub 15 SP4 / chromium
Package
- Name
- chromium
- Purl
- pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed110.0.5481.77-bp154.2.67.1
openSUSE:Leap 15.4 / chromium
Package
- Name
- chromium
- Purl
- pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed110.0.5481.77-bp154.2.67.1