Описание
Security update for chromium
This update for chromium fixes the following issues:
- Chromium 143.0.7499.109 (boo#1254776):
- CVE-2025-14372: Use after free in Password Manager
- CVE-2025-14373: Inappropriate implementation in Toolbar
- third issue with an exploit is known to exist in the wild
Список пакетов
openSUSE Leap 16.0
chromedriver-143.0.7499.40-bp160.1.1
chromium-143.0.7499.40-bp160.1.1
Ссылки
- SUSE Security Ratings
- SUSE Bug 1254776
- SUSE CVE CVE-2025-14372 page
- SUSE CVE CVE-2025-14373 page
Описание
Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
openSUSE Leap 16.0:chromedriver-143.0.7499.40-bp160.1.1
openSUSE Leap 16.0:chromium-143.0.7499.40-bp160.1.1
Ссылки
- CVE-2025-14372
- SUSE Bug 1254776
Описание
Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Medium)
Затронутые продукты
openSUSE Leap 16.0:chromedriver-143.0.7499.40-bp160.1.1
openSUSE Leap 16.0:chromium-143.0.7499.40-bp160.1.1
Ссылки
- CVE-2025-14373
- SUSE Bug 1254776