Описание
Security update for opera
This update for opera fixes the following issues:
- Update to 105.0.4970.34
- DNA-112796 [Import] Import bookmarks and history don't work
- DNA-113147 Add strength setting for Lucid Mode
- DNA-113148 Update 'Lucid Mode' button on videos to enable / disable split preview
- DNA-113287 Add strength setting for Lucid Mode in Easy Setup
- DNA-113310 Remove Lucid Mode for Images
- DNA-113360 [Lucid Mode] Shadow around lucid mode button
- DNA-113447 Split preview line should be white
- DNA-113630 Lucid Mode strength should default to highest (in desktop)
- Changes in 105.0.4970.29
- CHR-9416 Updating Chromium on desktop-stable-* branches
- DNA-113292 Extension icons not shown after restart
- The update to chromium 119.0.6045.199 fixes following issues: CVE-2023-6348, CVE-2023-6347, CVE-2023-6346, CVE-2023-6350, CVE-2023-6351, CVE-2023-6345
Список пакетов
openSUSE Leap 15.5 NonFree
Ссылки
- E-Mail link for openSUSE-SU-2023:0396-1
- SUSE Security Ratings
- SUSE CVE CVE-2023-6345 page
- SUSE CVE CVE-2023-6346 page
- SUSE CVE CVE-2023-6347 page
- SUSE CVE CVE-2023-6348 page
- SUSE CVE CVE-2023-6350 page
- SUSE CVE CVE-2023-6351 page
Описание
Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6345
- SUSE Bug 1217614
Описание
Use after free in WebAudio in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6346
- SUSE Bug 1217614
Описание
Use after free in Mojo in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6347
- SUSE Bug 1217614
Описание
Type Confusion in Spellcheck in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6348
- SUSE Bug 1217614
Описание
Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6350
- SUSE Bug 1217614
Описание
Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap corruption via a crafted avif file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6351
- SUSE Bug 1217614