Overview

File _patchinfo of Package patchinfo.18263

<patchinfo incident="18263">
  <issue tracker="bnc" id="1218302">VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.129</issue>
  <issue tracker="bnc" id="1218533">VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.199</issue>
  <issue tracker="bnc" id="1217839">VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.62</issue>
  <issue tracker="bnc" id="1218048">VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.109</issue>
  <issue tracker="bnc" id="1218303">VUL-0: CVE-2023-6704: libavif,chromium,ungoogled-chromium,nodejs-electron: use after free in libavif</issue>
  <issue tracker="bnc" id="1218719">VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.216</issue>
  <issue tracker="cve" id="2023-6704"/>
  <issue tracker="cve" id="2023-6511"/>
  <issue tracker="cve" id="2024-0222"/>
  <issue tracker="cve" id="2023-6705"/>
  <issue tracker="cve" id="2023-7024"/>
  <issue tracker="cve" id="2023-6703"/>
  <issue tracker="cve" id="2023-6510"/>
  <issue tracker="cve" id="2024-0225"/>
  <issue tracker="cve" id="2023-6707"/>
  <issue tracker="cve" id="2024-0333"/>
  <issue tracker="cve" id="2023-6508"/>
  <issue tracker="cve" id="2024-0224"/>
  <issue tracker="cve" id="2023-6512"/>
  <issue tracker="cve" id="2023-6706"/>
  <issue tracker="cve" id="2023-6702"/>
  <issue tracker="cve" id="2024-0223"/>
  <issue tracker="cve" id="2023-6509"/>
  <packager>AndreasStieger</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for chromium</summary>
  <description>This update for chromium fixes the following issues:

- Chromium 120.0.6099.216 (boo#1217839, boo#1218048, boo#1218302,
  boo#1218533, boo#1218719)

  * CVE-2024-0333: Insufficient data validation in Extensions
  * CVE-2024-0222: Use after free in ANGLE
  * CVE-2024-0223: Heap buffer overflow in ANGLE
  * CVE-2024-0224: Use after free in WebAudio
  * CVE-2024-0225: Use after free in WebGPU
  * CVE-2023-7024: Heap buffer overflow in WebRTC
  * CVE-2023-6702: Type Confusion in V8
  * CVE-2023-6703: Use after free in Blink
  * CVE-2023-6704: Use after free in libavif (boo#1218303)
  * CVE-2023-6705: Use after free in WebRTC
  * CVE-2023-6706: Use after free in FedCM
  * CVE-2023-6707: Use after free in CSS
  * CVE-2023-6508: Use after free in Media Stream
  * CVE-2023-6509: Use after free in Side Panel Search
  * CVE-2023-6510: Use after free in Media Capture
  * CVE-2023-6511: Inappropriate implementation in Autofill
  * CVE-2023-6512: Inappropriate implementation in Web Browser UI

</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places