Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 105.0.5195.102 (boo#1203102):
- CVE-2022-3075: Insufficient data validation in Mojo
Chromium 105.0.5195.52 (boo#1202964):
- CVE-2022-3038: Use after free in Network Service
- CVE-2022-3039: Use after free in WebSQL
- CVE-2022-3040: Use after free in Layout
- CVE-2022-3041: Use after free in WebSQL
- CVE-2022-3042: Use after free in PhoneHub
- CVE-2022-3043: Heap buffer overflow in Screen Capture
- CVE-2022-3044: Inappropriate implementation in Site Isolation
- CVE-2022-3045: Insufficient validation of untrusted input in V8
- CVE-2022-3046: Use after free in Browser Tag
- CVE-2022-3071: Use after free in Tab Strip
- CVE-2022-3047: Insufficient policy enforcement in Extensions API
- CVE-2022-3048: Inappropriate implementation in Chrome OS lockscreen
- CVE-2022-3049: Use after free in SplitScreen
- CVE-2022-3050: Heap buffer overflow in WebUI
- CVE-2022-3051: Heap buffer overflow in Exosphere
- CVE-2022-3052: Heap buffer overflow in Window Manager
- CVE-2022-3053: Inappropriate implementation in Pointer Lock
- CVE-2022-3054: Insufficient policy enforcement in DevTools
- CVE-2022-3055: Use after free in Passwords
- CVE-2022-3056: Insufficient policy enforcement in Content Security Policy
- CVE-2022-3057: Inappropriate implementation in iframe Sandbox
- CVE-2022-3058: Use after free in Sign-In Flow
- Update chromium-symbolic.svg: this fixes boo#1202403.
- Fix quoting in chrome-wrapper, don't put cwd on LD_LIBRARY_PATH
Список пакетов
SUSE Package Hub 15 SP3
openSUSE Leap 15.3
Ссылки
- E-Mail link for openSUSE-SU-2022:10120-1
- SUSE Security Ratings
- SUSE Bug 1202403
- SUSE Bug 1202964
- SUSE Bug 1203102
- SUSE CVE CVE-2022-3038 page
- SUSE CVE CVE-2022-3039 page
- SUSE CVE CVE-2022-3040 page
- SUSE CVE CVE-2022-3041 page
- SUSE CVE CVE-2022-3042 page
- SUSE CVE CVE-2022-3043 page
- SUSE CVE CVE-2022-3044 page
- SUSE CVE CVE-2022-3045 page
- SUSE CVE CVE-2022-3046 page
- SUSE CVE CVE-2022-3047 page
- SUSE CVE CVE-2022-3048 page
- SUSE CVE CVE-2022-3049 page
- SUSE CVE CVE-2022-3050 page
- SUSE CVE CVE-2022-3051 page
- SUSE CVE CVE-2022-3052 page
Описание
Use after free in Network Service in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3038
- SUSE Bug 1202964
Описание
Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3039
- SUSE Bug 1202964
Описание
Use after free in Layout in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3040
- SUSE Bug 1202964
Описание
Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3041
- SUSE Bug 1202964
Описание
Use after free in PhoneHub in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3042
- SUSE Bug 1202964
Описание
Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3043
- SUSE Bug 1202964
Описание
Inappropriate implementation in Site Isolation in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3044
- SUSE Bug 1202964
Описание
Insufficient validation of untrusted input in V8 in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3045
- SUSE Bug 1202964
Описание
Use after free in Browser Tag in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3046
- SUSE Bug 1202964
Описание
Insufficient policy enforcement in Extensions API in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to bypass downloads policy via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3047
- SUSE Bug 1202964
Описание
Inappropriate implementation in Chrome OS lockscreen in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a local attacker to bypass lockscreen navigation restrictions via physical access to the device.
Затронутые продукты
Ссылки
- CVE-2022-3048
- SUSE Bug 1202964
Описание
Use after free in SplitScreen in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3049
- SUSE Bug 1202964
Описание
Heap buffer overflow in WebUI in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.
Затронутые продукты
Ссылки
- CVE-2022-3050
- SUSE Bug 1202964
Описание
Heap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.
Затронутые продукты
Ссылки
- CVE-2022-3051
- SUSE Bug 1202964
Описание
Heap buffer overflow in Window Manager in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.
Затронутые продукты
Ссылки
- CVE-2022-3052
- SUSE Bug 1202964
Описание
Inappropriate implementation in Pointer Lock in Google Chrome on Mac prior to 105.0.5195.52 allowed a remote attacker to restrict user navigation via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3053
- SUSE Bug 1202964
Описание
Insufficient policy enforcement in DevTools in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3054
- SUSE Bug 1202964
Описание
Use after free in Passwords in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3055
- SUSE Bug 1202964
Описание
Insufficient policy enforcement in Content Security Policy in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to bypass content security policy via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3056
- SUSE Bug 1202964
Описание
Inappropriate implementation in iframe Sandbox in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3057
- SUSE Bug 1202964
Описание
Use after free in Sign-In Flow in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction.
Затронутые продукты
Ссылки
- CVE-2022-3058
- SUSE Bug 1202964
Описание
Use after free in Tab Strip in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction.
Затронутые продукты
Ссылки
- CVE-2022-3071
Описание
Insufficient data validation in Mojo in Google Chrome prior to 105.0.5195.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2022-3075
- SUSE Bug 1203102