Описание
Security update for chromium
This update for chromium fixes the following issues:
-
Chromium 133.0.6943.53 (stable released 2024-02-04) (boo#1236806)
- CVE-2025-0444: Use after free in Skia
- CVE-2025-0445: Use after free in V8
- CVE-2025-0451: Inappropriate implementation in Extensions API
-
Chromium 133.0.6943.35 (beta released 2025-01-29)
Список пакетов
SUSE Package Hub 15 SP6
openSUSE Leap 15.6
Ссылки
- E-Mail link for openSUSE-SU-2025:0058-1
- SUSE Security Ratings
- SUSE Bug 1236806
- SUSE CVE CVE-2025-0444 page
- SUSE CVE CVE-2025-0445 page
- SUSE CVE CVE-2025-0451 page
Описание
Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2025-0444
- SUSE Bug 1236806
Описание
Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Затронутые продукты
Ссылки
- CVE-2025-0445
- SUSE Bug 1236806
Описание
Inappropriate implementation in Extensions API in Google Chrome prior to 133.0.6943.53 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted Chrome Extension. (Chromium security severity: Medium)
Затронутые продукты
Ссылки
- CVE-2025-0451
- SUSE Bug 1236806