Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 128.0.6613.137 (released 2024-09-10) (boo#1230391)
- CVE-2024-8636: Heap buffer overflow in Skia
- CVE-2024-8637: Use after free in Media Router
- CVE-2024-8638: Type Confusion in V8
- CVE-2024-8639: Use after free in Autofill
Список пакетов
SUSE Package Hub 15 SP5
SUSE Package Hub 15 SP6
openSUSE Leap 15.5
openSUSE Leap 15.6
Ссылки
- E-Mail link for openSUSE-SU-2024:0302-1
- SUSE Security Ratings
- SUSE Bug 1230391
- SUSE CVE CVE-2024-8636 page
- SUSE CVE CVE-2024-8637 page
- SUSE CVE CVE-2024-8638 page
- SUSE CVE CVE-2024-8639 page
Описание
Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2024-8636
- SUSE Bug 1230391
Описание
Use after free in Media Router in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2024-8637
- SUSE Bug 1230391
Описание
Type Confusion in V8 in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2024-8638
- SUSE Bug 1230391
Описание
Use after free in Autofill in Google Chrome on Android prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2024-8639
- SUSE Bug 1230391