Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 111.0.5563.110 (boo#1209598)
- CVE-2023-1528: Use after free in Passwords
- CVE-2023-1529: Out of bounds memory access in WebHID
- CVE-2023-1530: Use after free in PDF
- CVE-2023-1531: Use after free in ANGLE
- CVE-2023-1532: Out of bounds read in GPU Video
- CVE-2023-1533: Use after free in WebProtect
- CVE-2023-1534: Out of bounds read in ANGLE
Список пакетов
SUSE Package Hub 15 SP4
openSUSE Leap 15.4
Ссылки
- E-Mail link for openSUSE-SU-2023:0082-1
- SUSE Security Ratings
- SUSE Bug 1209598
- SUSE CVE CVE-2023-1528 page
- SUSE CVE CVE-2023-1529 page
- SUSE CVE CVE-2023-1530 page
- SUSE CVE CVE-2023-1531 page
- SUSE CVE CVE-2023-1532 page
- SUSE CVE CVE-2023-1533 page
- SUSE CVE CVE-2023-1534 page
Описание
Use after free in Passwords in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1528
- SUSE Bug 1209598
Описание
Out of bounds memory access in WebHID in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a malicious HID device. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1529
- SUSE Bug 1209598
Описание
Use after free in PDF in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1530
- SUSE Bug 1209598
Описание
Use after free in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1531
- SUSE Bug 1209598
Описание
Out of bounds read in GPU Video in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1532
- SUSE Bug 1209598
Описание
Use after free in WebProtect in Google Chrome prior to 111.0.5563.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1533
- SUSE Bug 1209598
Описание
Out of bounds read in ANGLE in Google Chrome prior to 111.0.5563.110 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-1534
- SUSE Bug 1209598