Overview

File _patchinfo of Package patchinfo.18016

<patchinfo incident="18016">
  <issue tracker="bnc" id="1213920">VUL-0: chromium,ungoogled-chromium: chromium update to 115.0.5790.170</issue>
  <issue tracker="cve" id="2023-4070"/>
  <issue tracker="cve" id="2023-4075"/>
  <issue tracker="cve" id="2023-4073"/>
  <issue tracker="cve" id="2023-4069"/>
  <issue tracker="cve" id="2023-4071"/>
  <issue tracker="cve" id="2023-4078"/>
  <issue tracker="cve" id="2023-4074"/>
  <issue tracker="cve" id="2023-4068"/>
  <issue tracker="cve" id="2023-4072"/>
  <issue tracker="cve" id="2023-4076"/>
  <issue tracker="cve" id="2023-4077"/>
  <packager>AndreasStieger</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for chromium</summary>
  <description>This update for chromium fixes the following issues:

Chromium 115.0.5790.170 (boo#1213920)

* CVE-2023-4068: Type Confusion in V8
* CVE-2023-4069: Type Confusion in V8
* CVE-2023-4070: Type Confusion in V8
* CVE-2023-4071: Heap buffer overflow in Visuals
* CVE-2023-4072: Out of bounds read and write in WebGL
* CVE-2023-4073: Out of bounds memory access in ANGLE
* CVE-2023-4074: Use after free in Blink Task Scheduling
* CVE-2023-4075: Use after free in Cast
* CVE-2023-4076: Use after free in WebRTC
* CVE-2023-4077: Insufficient data validation in Extensions
* CVE-2023-4078: Inappropriate implementation in Extensions

- Specify re2 build dependency in a way that makes Leap packages
  build in devel project and in Maintenance 

</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places