openSUSE-SU-2022:10073-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:10073-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2022:10073-1
- Related
- Published
- 2022-08-01T06:43:27Z
- Modified
- 2022-08-01T06:43:27Z
- Summary
- Security update for chromium
- Details
-
This update for chromium fixes the following issues:
Chromium was updated to 103.0.5060.134 (boo#1201679):
- CVE-2022-2477 : Use after free in Guest View
- CVE-2022-2478 : Use after free in PDF
- CVE-2022-2479 : Insufficient validation of untrusted input in File
- CVE-2022-2480 : Use after free in Service Worker API
- CVE-2022-2481: Use after free in Views
- CVE-2022-2163: Use after free in Cast UI and Toolbar
- Various fixes from internal audits, fuzzing and other initiatives
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/32RZRSVM5BTCD25ZWPF7FIV6VKPYNU5E/
- https://bugzilla.suse.com/1201679
- https://www.suse.com/security/cve/CVE-2022-2163
- https://www.suse.com/security/cve/CVE-2022-2477
- https://www.suse.com/security/cve/CVE-2022-2478
- https://www.suse.com/security/cve/CVE-2022-2479
- https://www.suse.com/security/cve/CVE-2022-2480
- https://www.suse.com/security/cve/CVE-2022-2481
Affected packages
SUSE:Package Hub 15 SP3 / chromium
Package
- Name
- chromium
- Purl
- purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3
SUSE:Package Hub 15 SP4 / chromium
Package
- Name
- chromium
- Purl
- purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4
openSUSE:Leap 15.3 / chromium
Package
- Name
- chromium
- Purl
- purl:rpm/suse/chromium&distro=openSUSE%20Leap%2015.3