openSUSE-SU-2023:0325-1

Опубликовано: 26 окт. 2023

Источник: suse-cvrf

Описание

Security update for chromium

This update for chromium fixes the following issues:

Chromium 118.0.5993.117 (boo#1216549)
- CVE-2023-5472: Use after free in Profiles
- Various fixes from internal audits, fuzzing and other initiatives

Список пакетов

SUSE Package Hub 15 SP4

chromedriver-118.0.5993.117-bp155.2.52.1

chromium-118.0.5993.117-bp155.2.52.1

SUSE Package Hub 15 SP5

chromedriver-118.0.5993.117-bp155.2.52.1

chromium-118.0.5993.117-bp155.2.52.1

openSUSE Leap 15.4

chromedriver-118.0.5993.117-bp155.2.52.1

chromium-118.0.5993.117-bp155.2.52.1

openSUSE Leap 15.5

chromedriver-118.0.5993.117-bp155.2.52.1

chromium-118.0.5993.117-bp155.2.52.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MZ3QKUQGRWZFIKHE6USYN3QNVTMQP47N/
E-Mail link for openSUSE-SU-2023:0325-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1216549
SUSE Bug 1216549
https://www.suse.com/security/cve/CVE-2023-5472/
SUSE CVE CVE-2023-5472 page

Описание

Use after free in Profiles in Google Chrome prior to 118.0.5993.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Затронутые продукты

SUSE Package Hub 15 SP4:chromedriver-118.0.5993.117-bp155.2.52.1

SUSE Package Hub 15 SP4:chromium-118.0.5993.117-bp155.2.52.1

SUSE Package Hub 15 SP5:chromedriver-118.0.5993.117-bp155.2.52.1

SUSE Package Hub 15 SP5:chromium-118.0.5993.117-bp155.2.52.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-5472.html
CVE-2023-5472
https://bugzilla.suse.com/1216549
SUSE Bug 1216549

openSUSE-SU-2023:0325-1

Описание

Список пакетов

SUSE Package Hub 15 SP4

SUSE Package Hub 15 SP5

openSUSE Leap 15.4

openSUSE Leap 15.5

Ссылки

Уязвимость: CVE-2023-5472

Описание

Затронутые продукты

Ссылки