Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 115.0.5790.102:
- stability fix
Chromium 115.0.5790.98:
-
Security: The Storage, Service Worker, and Communication APIs are now partitioned in third-party contexts to prevent certain types of side-channel cross-site tracking
-
HTTPS: Automatically and optimistically upgrade all main-frame navigations to HTTPS, with fast fallback to HTTP.
-
CSS: accept multiple values of the display property
-
CSS: support boolean context style container queries
-
CSS: support scroll-driven animations
-
Increase the maximum size of a WebAssembly.Module() on the main thread to 8 MB
-
FedCM: Support credential management mediation requirements for auto re-authentication
-
Deprecate the document.domain setter
-
Deprecate mutation events
-
Security fixes (boo#1213462):
- CVE-2023-3727: Use after free in WebRTC
- CVE-2023-3728: Use after free in WebRTC
- CVE-2023-3730: Use after free in Tab Groups
- CVE-2023-3732: Out of bounds memory access in Mojo
- CVE-2023-3733: Inappropriate implementation in WebApp Installs
- CVE-2023-3734: Inappropriate implementation in Picture In Picture
- CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts
- CVE-2023-3736: Inappropriate implementation in Custom Tabs
- CVE-2023-3737: Inappropriate implementation in Notifications
- CVE-2023-3738: Inappropriate implementation in Autofill
- CVE-2023-3740: Insufficient validation of untrusted input in Themes
- Various fixes from internal audits, fuzzing and other initiatives
Список пакетов
SUSE Package Hub 15 SP4
SUSE Package Hub 15 SP5
openSUSE Leap 15.4
openSUSE Leap 15.5
Ссылки
- E-Mail link for openSUSE-SU-2023:0193-1
- SUSE Security Ratings
- SUSE Bug 1213462
- SUSE CVE CVE-2023-3727 page
- SUSE CVE CVE-2023-3728 page
- SUSE CVE CVE-2023-3730 page
- SUSE CVE CVE-2023-3732 page
- SUSE CVE CVE-2023-3733 page
- SUSE CVE CVE-2023-3734 page
- SUSE CVE CVE-2023-3735 page
- SUSE CVE CVE-2023-3736 page
- SUSE CVE CVE-2023-3737 page
- SUSE CVE CVE-2023-3738 page
- SUSE CVE CVE-2023-3740 page
Описание
Use after free in WebRTC in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-3727
- SUSE Bug 1213462
Описание
Use after free in WebRTC in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-3728
- SUSE Bug 1213462
Описание
Use after free in Tab Groups in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-3730
- SUSE Bug 1213462
Описание
Out of bounds memory access in Mojo in Google Chrome prior to 115.0.5790.98 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-3732
- SUSE Bug 1213462
Описание
Inappropriate implementation in WebApp Installs in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3733
- SUSE Bug 1213462
Описание
Inappropriate implementation in Picture In Picture in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3734
- SUSE Bug 1213462
Описание
Inappropriate implementation in Web API Permission Prompts in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3735
- SUSE Bug 1213462
Описание
Inappropriate implementation in Custom Tabs in Google Chrome on Android prior to 115.0.5790.98 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3736
- SUSE Bug 1213462
Описание
Inappropriate implementation in Notifications in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to spoof the contents of media notifications via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3737
- SUSE Bug 1213462
Описание
Inappropriate implementation in Autofill in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-3738
- SUSE Bug 1213462
Описание
Insufficient validation of untrusted input in Themes in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially serve malicious content to a user via a crafted background URL. (Chromium security severity: Low)
Затронутые продукты
Ссылки
- CVE-2023-3740
- SUSE Bug 1213462