Описание
Security update for chromium
This update for chromium fixes the following issues:
-
Chromium 114.0.5735.106 (boo#1212044):
- CVE-2023-3079: Type Confusion in V8
-
Chromium 114.0.5735.90 (boo#1211843):
- CSS text-wrap: balance is available
- Cookies partitioned by top level site (CHIPS)
- New Popover API
-
Security fixes:
- CVE-2023-2929: Out of bounds write in Swiftshader
- CVE-2023-2930: Use after free in Extensions
- CVE-2023-2931: Use after free in PDF
- CVE-2023-2932: Use after free in PDF
- CVE-2023-2933: Use after free in PDF
- CVE-2023-2934: Out of bounds memory access in Mojo
- CVE-2023-2935: Type Confusion in V8
- CVE-2023-2936: Type Confusion in V8
- CVE-2023-2937: Inappropriate implementation in Picture In Picture
- CVE-2023-2938: Inappropriate implementation in Picture In Picture
- CVE-2023-2939: Insufficient data validation in Installer
- CVE-2023-2940: Inappropriate implementation in Downloads
- CVE-2023-2941: Inappropriate implementation in Extensions API
Список пакетов
SUSE Package Hub 15 SP4
openSUSE Leap 15.4
Ссылки
- E-Mail link for openSUSE-SU-2023:0124-1
- SUSE Security Ratings
- SUSE Bug 1211843
- SUSE Bug 1212044
- SUSE CVE CVE-2023-2929 page
- SUSE CVE CVE-2023-2930 page
- SUSE CVE CVE-2023-2931 page
- SUSE CVE CVE-2023-2932 page
- SUSE CVE CVE-2023-2933 page
- SUSE CVE CVE-2023-2934 page
- SUSE CVE CVE-2023-2935 page
- SUSE CVE CVE-2023-2936 page
- SUSE CVE CVE-2023-2937 page
- SUSE CVE CVE-2023-2938 page
- SUSE CVE CVE-2023-2939 page
- SUSE CVE CVE-2023-2940 page
- SUSE CVE CVE-2023-2941 page
- SUSE CVE CVE-2023-3079 page
Описание
Out of bounds write in Swiftshader in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2929
- SUSE Bug 1211843
Описание
Use after free in Extensions in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2930
- SUSE Bug 1211843
Описание
Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2931
- SUSE Bug 1211843
Описание
Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2932
- SUSE Bug 1211843
Описание
Use after free in PDF in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2933
- SUSE Bug 1211843
Описание
Out of bounds memory access in Mojo in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2934
- SUSE Bug 1211843
Описание
Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2935
- SUSE Bug 1211843
Описание
Type Confusion in V8 in Google Chrome prior to 114.0.5735.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2936
- SUSE Bug 1211843
Описание
Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-2937
- SUSE Bug 1211843
Описание
Inappropriate implementation in Picture In Picture in Google Chrome prior to 114.0.5735.90 allowed a remote attacker who had compromised the renderer process to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-2938
- SUSE Bug 1211843
Описание
Insufficient data validation in Installer in Google Chrome on Windows prior to 114.0.5735.90 allowed a local attacker to perform privilege escalation via crafted symbolic link. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-2939
- SUSE Bug 1211843
Описание
Inappropriate implementation in Downloads in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-2940
- SUSE Bug 1211843
Описание
Inappropriate implementation in Extensions API in Google Chrome prior to 114.0.5735.90 allowed an attacker who convinced a user to install a malicious extension to spoof the contents of the UI via a crafted Chrome Extension. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-2941
- SUSE Bug 1211843
Описание
Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-3079
- SUSE Bug 1212044