Описание
Security update for opera
This update for opera fixes the following issues:
Update to 92.0.4561.21
- CHR-9037 Update chromium on desktop-stable-106-4561 to 106.0.5249.119
- DNA-102295 Missing GX.games section in settings
- DNA-102308 Presubmit errors
- DNA-102329 [Consent flow] clicking on 'Customize settings' doesn't resize the popup
- DNA-102340 Sidebar control panel doesn't hide
- DNA-102348 Replace old Dify url with a new one
- DNA-102430 Translations for O92
- DNA-102534 Allow staging RH Agent extension to use VPN Pro API
- DNA-102548 Rich hints extension crashes on Linux
- DNA-102551 Promote O92 to stable
- Complete Opera 92.0 changelog at: https://blogs.opera.com/desktop/changelog-for-92/
- The update to chromium 106.0.5249.119 fixes following issues:
CVE-2022-3445, CVE-2022-3446, CVE-2022-3447, CVE-2022-3448, CVE-2022-3449, CVE-2022-3450
Update to 91.0.4516.77
- DNA-101988 Implement dark mode for consent flow popups
- DNA-102348 Replace old Dify url with a new one
Update to 91.0.4516.65
- DNA-101240 Save “remind in 3 days” setting
- DNA-101622 Add a way to check if browser is connected to webenv
- DNA-101838 Unfiltered dropdown disabled by default on stable
- DNA-101990 Boost sites into top sites
- DNA-101998 flag tiktok-panel doesn’t work
- DNA-102075 Crash at extensions::ExtensionApiFrameIdMap:: OnRenderFrameDeleted(content::RenderFrameHost*)
Список пакетов
openSUSE Leap 15.4 NonFree
Ссылки
- E-Mail link for openSUSE-SU-2022:10182-1
- SUSE Security Ratings
- SUSE CVE CVE-2022-3445 page
- SUSE CVE CVE-2022-3446 page
- SUSE CVE CVE-2022-3447 page
- SUSE CVE CVE-2022-3448 page
- SUSE CVE CVE-2022-3449 page
- SUSE CVE CVE-2022-3450 page
Описание
Use after free in Skia in Google Chrome prior to 106.0.5249.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3445
- SUSE Bug 1204223
Описание
Heap buffer overflow in WebSQL in Google Chrome prior to 106.0.5249.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3446
- SUSE Bug 1204223
Описание
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 106.0.5249.119 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3447
- SUSE Bug 1204223
Описание
Use after free in Permissions API in Google Chrome prior to 106.0.5249.119 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3448
- SUSE Bug 1204223
Описание
Use after free in Safe Browsing in Google Chrome prior to 106.0.5249.119 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3449
- SUSE Bug 1204223
Описание
Use after free in Peer Connection in Google Chrome prior to 106.0.5249.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2022-3450
- SUSE Bug 1204223