Описание
Security update for opera
This update for opera fixes the following issues:
-
Update to 106.0.4998.19
- CHR-9416 Updating Chromium on desktop-stable-* branches
- DNA-113887 Translations for O106
-
The update to chromium 120.0.6099.130 fixes following issues: CVE-2023-7024
-
Update to 106.0.4998.16
- CHR-9553 Update Chromium on desktop-stable-120-4998 to 120.0.6099.109
- DNA-112522 'Find in page' option does not show text cursor
- DNA-113349 Lucid mode strength in full settings bar is visible only after change
- DNA-113462 Crash at opera::fcm::FcmRegistrationServiceImpl:: RemoveTokenObserverForClient(opera::fcm::FcmClient*, syncer::FCMRegistrationTokenObserver*)
- DNA-113748 Split preview shows on videoconferencing
- DNA-114091 Promote 106 to stable
-
Complete Opera 106 changelog at: https://blogs.opera.com/desktop/changelog-for-106/
-
The update to chromium 120.0.6099.109 fixes following issues: CVE-2023-6702, CVE-2023-6703, CVE-2023-6704, CVE-2023-6705, CVE-2023-6706, CVE-2023-6707
-
Update to 105.0.4970.48
- DNA-112522 'Find in page' option does not show text cursor
Список пакетов
openSUSE Leap 15.5 NonFree
Ссылки
- E-Mail link for openSUSE-SU-2024:0002-1
- SUSE Security Ratings
- SUSE CVE CVE-2023-6702 page
- SUSE CVE CVE-2023-6703 page
- SUSE CVE CVE-2023-6704 page
- SUSE CVE CVE-2023-6705 page
- SUSE CVE CVE-2023-6706 page
- SUSE CVE CVE-2023-6707 page
- SUSE CVE CVE-2023-7024 page
Описание
Type confusion in V8 in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6702
- SUSE Bug 1218048
Описание
Use after free in Blink in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6703
- SUSE Bug 1218048
Описание
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6704
- SUSE Bug 1218048
- SUSE Bug 1218303
Описание
Use after free in WebRTC in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6705
- SUSE Bug 1218048
Описание
Use after free in FedCM in Google Chrome prior to 120.0.6099.109 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-6706
- SUSE Bug 1218048
Описание
Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2023-6707
- SUSE Bug 1218048
Описание
Heap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2023-7024
- SUSE Bug 1218302