Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 116.0.5845.96
- New CSS features: Motion Path, and 'display' and 'content-visibility' animations
- Web APIs: AbortSignal.any(), BYOB support for Fetch, Back/ forward cache NotRestoredReason API, Document Picture-in- Picture, Expanded Wildcards in Permissions Policy Origins, FedCM bundle: Login Hint API, User Info API, and RP Context API, Non-composed Mouse and Pointer enter/leave events, Remove document.open sandbox inheritance, Report Critical-CH caused restart in NavigationTiming
This update fixes a number of security issues (boo#1214301):
- CVE-2023-2312: Use after free in Offline
- CVE-2023-4349: Use after free in Device Trust Connectors
- CVE-2023-4350: Inappropriate implementation in Fullscreen
- CVE-2023-4351: Use after free in Network
- CVE-2023-4352: Type Confusion in V8
- CVE-2023-4353: Heap buffer overflow in ANGLE
- CVE-2023-4354: Heap buffer overflow in Skia
- CVE-2023-4355: Out of bounds memory access in V8
- CVE-2023-4356: Use after free in Audio
- CVE-2023-4357: Insufficient validation of untrusted input in XML
- CVE-2023-4358: Use after free in DNS
- CVE-2023-4359: Inappropriate implementation in App Launcher
- CVE-2023-4360: Inappropriate implementation in Color
- CVE-2023-4361: Inappropriate implementation in Autofill
- CVE-2023-4362: Heap buffer overflow in Mojom IDL
- CVE-2023-4363: Inappropriate implementation in WebShare
- CVE-2023-4364: Inappropriate implementation in Permission Prompts
- CVE-2023-4365: Inappropriate implementation in Fullscreen
- CVE-2023-4366: Use after free in Extensions
- CVE-2023-4367: Insufficient policy enforcement in Extensions API
- CVE-2023-4368: Insufficient policy enforcement in Extensions API
- Fix crash with extensions (boo#1214003)
Список пакетов
SUSE Package Hub 15 SP4
SUSE Package Hub 15 SP5
openSUSE Leap 15.4
openSUSE Leap 15.5
Ссылки
- E-Mail link for openSUSE-SU-2023:0234-1
- SUSE Security Ratings
- SUSE Bug 1214003
- SUSE Bug 1214301
- SUSE CVE CVE-2023-2312 page
- SUSE CVE CVE-2023-4349 page
- SUSE CVE CVE-2023-4350 page
- SUSE CVE CVE-2023-4351 page
- SUSE CVE CVE-2023-4352 page
- SUSE CVE CVE-2023-4353 page
- SUSE CVE CVE-2023-4354 page
- SUSE CVE CVE-2023-4355 page
- SUSE CVE CVE-2023-4356 page
- SUSE CVE CVE-2023-4357 page
- SUSE CVE CVE-2023-4358 page
- SUSE CVE CVE-2023-4359 page
- SUSE CVE CVE-2023-4360 page
- SUSE CVE CVE-2023-4361 page
- SUSE CVE CVE-2023-4362 page
- SUSE CVE CVE-2023-4363 page
Описание
Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-2312
- SUSE Bug 1214301
Описание
Use after free in Device Trust Connectors in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4349
- SUSE Bug 1214301
Описание
Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4350
- SUSE Bug 1214301
Описание
Use after free in Network in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has elicited a browser shutdown to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4351
- SUSE Bug 1214301
Описание
Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4352
- SUSE Bug 1214301
Описание
Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4353
- SUSE Bug 1214301
Описание
Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4354
- SUSE Bug 1214301
Описание
Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-4355
- SUSE Bug 1214301
Описание
Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4356
- SUSE Bug 1214301
Описание
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4357
- SUSE Bug 1214301
Описание
Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4358
- SUSE Bug 1214301
Описание
Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96 allowed a remote attacker to potentially spoof elements of the security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4359
- SUSE Bug 1214301
Описание
Inappropriate implementation in Color in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4360
- SUSE Bug 1214301
Описание
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4361
- SUSE Bug 1214301
Описание
Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4362
- SUSE Bug 1214301
Описание
Inappropriate implementation in WebShare in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to spoof the contents of a dialog URL via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4363
- SUSE Bug 1214301
Описание
Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4364
- SUSE Bug 1214301
Описание
Inappropriate implementation in Fullscreen in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4365
- SUSE Bug 1214301
Описание
Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4366
- SUSE Bug 1214301
Описание
Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4367
- SUSE Bug 1214301
Описание
Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-4368
- SUSE Bug 1214301