Описание
Security update for chromium
This update for chromium fixes the following issues:
Update to version 109.0.5414.74 (boo#1207018):
- CVE-2023-0128: Use after free in Overview Mode
- CVE-2023-0129: Heap buffer overflow in Network Service
- CVE-2023-0130: Inappropriate implementation in Fullscreen API
- CVE-2023-0131: Inappropriate implementation in iframe Sandbox
- CVE-2023-0132: Inappropriate implementation in Permission prompts
- CVE-2023-0133: Inappropriate implementation in Permission prompts
- CVE-2023-0134: Use after free in Cart
- CVE-2023-0135: Use after free in Cart
- CVE-2023-0136: Inappropriate implementation in Fullscreen API
- CVE-2023-0137: Heap buffer overflow in Platform Apps
- CVE-2023-0138: Heap buffer overflow in libphonenumber
- CVE-2023-0139: Insufficient validation of untrusted input in Downloads
- CVE-2023-0140: Inappropriate implementation in File System API
- CVE-2023-0141: Insufficient policy enforcement in CORS
- Various fixes from internal audits, fuzzing and other initiatives
Список пакетов
SUSE Package Hub 15 SP4
openSUSE Leap 15.4
Ссылки
- E-Mail link for openSUSE-SU-2023:0016-1
- SUSE Security Ratings
- SUSE Bug 1207018
- SUSE CVE CVE-2023-0128 page
- SUSE CVE CVE-2023-0129 page
- SUSE CVE CVE-2023-0130 page
- SUSE CVE CVE-2023-0131 page
- SUSE CVE CVE-2023-0132 page
- SUSE CVE CVE-2023-0133 page
- SUSE CVE CVE-2023-0134 page
- SUSE CVE CVE-2023-0136 page
- SUSE CVE CVE-2023-0137 page
- SUSE CVE CVE-2023-0138 page
- SUSE CVE CVE-2023-0139 page
- SUSE CVE CVE-2023-0140 page
- SUSE CVE CVE-2023-0141 page
Описание
Use after free in Overview Mode in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-0128
- SUSE Bug 1207018
Описание
Heap buffer overflow in Network Service in Google Chrome prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and specific interactions. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-0129
- SUSE Bug 1207018
Описание
Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0130
- SUSE Bug 1207018
Описание
Inappropriate implementation in in iframe Sandbox in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to bypass file download restrictions via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0131
- SUSE Bug 1207018
Описание
Inappropriate implementation in in Permission prompts in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to force acceptance of a permission prompt via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0132
- SUSE Bug 1207018
Описание
Inappropriate implementation in in Permission prompts in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to bypass main origin permission delegation via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0133
- SUSE Bug 1207018
Описание
Use after free in Cart in Google Chrome prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via database corruption and a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0134
- SUSE Bug 1207018
Описание
Inappropriate implementation in in Fullscreen API in Google Chrome on Android prior to 109.0.5414.74 allowed a remote attacker to execute incorrect security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0136
- SUSE Bug 1207018
Описание
Heap buffer overflow in Platform Apps in Google Chrome on Chrome OS prior to 109.0.5414.74 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-0137
- SUSE Bug 1207018
Описание
Heap buffer overflow in libphonenumber in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-0138
- SUSE Bug 1207018
Описание
Insufficient validation of untrusted input in Downloads in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass download restrictions via a crafted HTML page. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-0139
- SUSE Bug 1207018
Описание
Inappropriate implementation in in File System API in Google Chrome on Windows prior to 109.0.5414.74 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-0140
- SUSE Bug 1207018
Описание
Insufficient policy enforcement in CORS in Google Chrome prior to 109.0.5414.74 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-0141
- SUSE Bug 1207018