openSUSE-SU-2025:0120-1

Опубликовано: 13 апр. 2025

Источник: suse-cvrf

Описание

Security update for chromium

This update for chromium fixes the following issues:

Chromium 135.0.7049.84 (stable release 2025-04-08) (boo#1240968)
- CVE-2025-3066: Use after free in Site Isolation

Список пакетов

SUSE Package Hub 15 SP6

chromedriver-135.0.7049.84-bp156.2.107.1

chromium-135.0.7049.84-bp156.2.107.1

openSUSE Leap 15.6

chromedriver-135.0.7049.84-bp156.2.107.1

chromium-135.0.7049.84-bp156.2.107.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KS5K7EOFWNASXXKVGJQSFDJETGYMIMRU/
E-Mail link for openSUSE-SU-2025:0120-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1238826
SUSE Bug 1238826
https://bugzilla.suse.com/1239780
SUSE Bug 1239780
https://bugzilla.suse.com/1240968
SUSE Bug 1240968
https://www.suse.com/security/cve/CVE-2025-3066/
SUSE CVE CVE-2025-3066 page

Описание

Use after free in Site Isolation in Google Chrome prior to 135.0.7049.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Затронутые продукты

SUSE Package Hub 15 SP6:chromedriver-135.0.7049.84-bp156.2.107.1

SUSE Package Hub 15 SP6:chromium-135.0.7049.84-bp156.2.107.1

openSUSE Leap 15.6:chromedriver-135.0.7049.84-bp156.2.107.1

openSUSE Leap 15.6:chromium-135.0.7049.84-bp156.2.107.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-3066.html
CVE-2025-3066
https://bugzilla.suse.com/1240555
SUSE Bug 1240555

openSUSE-SU-2025:0120-1

Описание

Список пакетов

SUSE Package Hub 15 SP6

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-3066

Описание

Затронутые продукты

Ссылки