openSUSE-SU-2023:0061-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2023:0061-1.json

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2023:0061-1

Related

Published

2023-02-27T09:07:05Z

Modified

2023-02-27T09:07:05Z

Summary

Security update for chromium

Details

This update for chromium fixes the following issues:

Chromium 110.0.5481.177 (boo#1208589)

CVE-2023-0927: Use after free in Web Payments API
CVE-2023-0928: Use after free in SwiftShader
CVE-2023-0929: Use after free in Vulkan
CVE-2023-0930: Heap buffer overflow in Video
CVE-2023-0931: Use after free in Video
CVE-2023-0932: Use after free in WebRTC
CVE-2023-0933: Integer overflow in PDF
CVE-2023-0941: Use after free in Prompts
Various fixes from internal audits, fuzzing and other initiatives

Chromium 110.0.5481.100

fix regression on SAP Business Objects web UI
fix date formatting behavior change from ICU 72

References

Affected packages

SUSE:Package Hub 15 SP4 / chromium

Package

Name: chromium
Purl: purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

110.0.5481.177-bp154.2.70.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "110.0.5481.177-bp154.2.70.1",
            "chromium": "110.0.5481.177-bp154.2.70.1"
        }
    ]
}

openSUSE:Leap 15.4 / chromium

Package

Name: chromium
Purl: purl:rpm/suse/chromium&distro=openSUSE%20Leap%2015.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

110.0.5481.177-bp154.2.70.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "110.0.5481.177-bp154.2.70.1",
            "chromium": "110.0.5481.177-bp154.2.70.1"
        }
    ]
}