Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="17449">
  <issue tracker="bnc" id="1197680">VUL-0: chromium: multiple security issues fixed in 100.0.4896.60</issue>
  <issue tracker="bnc" id="1198053">VUL-0: CVE-2022-1232: chromium: Type Confusion in V8</issue>
  <issue id="1198361" tracker="bnc">VUL-0: chromium: multiple security issues fixed in 100.0.4896.88</issue>
  <issue tracker="cve" id="2022-1133"/>
  <issue tracker="cve" id="2022-1144"/>
  <issue tracker="cve" id="2022-1136"/>
  <issue tracker="cve" id="2022-1143"/>
  <issue tracker="cve" id="2022-1129"/>
  <issue tracker="cve" id="2022-1130"/>
  <issue tracker="cve" id="2022-1139"/>
  <issue tracker="cve" id="2022-1134"/>
  <issue tracker="cve" id="2022-1142"/>
  <issue tracker="cve" id="2022-1146"/>
  <issue tracker="cve" id="2022-1138"/>
  <issue tracker="cve" id="2022-1137"/>
  <issue tracker="cve" id="2022-1135"/>
  <issue tracker="cve" id="2022-1131"/>
  <issue tracker="cve" id="2022-1125"/>
  <issue tracker="cve" id="2022-1132"/>
  <issue tracker="cve" id="2022-1145"/>
  <issue tracker="cve" id="2022-1127"/>
  <issue tracker="cve" id="2022-1128"/>
  <issue tracker="cve" id="2022-1141"/>
  <issue tracker="cve" id="2022-1232"/>
  <issue id="2022-1305" tracker="cve" />
  <issue id="2022-1306" tracker="cve" />
  <issue id="2022-1307" tracker="cve" />
  <issue id="2022-1308" tracker="cve" />
  <issue id="2022-1309" tracker="cve" />
  <issue id="2022-1310" tracker="cve" />
  <issue id="2022-1311" tracker="cve" />
  <issue id="2022-1312" tracker="cve" />
  <issue id="2022-1313" tracker="cve" />
  <issue id="2022-1314" tracker="cve" />
  <packager>gmbr3</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for chromium</summary>
  <description>This update for chromium fixes the following issues:

Updated to Chromium 100.0.4896.88 (boo#1198361)

- CVE-2022-1305: Use after free in storage
- CVE-2022-1306: Inappropriate implementation in compositing
- CVE-2022-1307: Inappropriate implementation in full screen
- CVE-2022-1308: Use after free in BFCache
- CVE-2022-1309: Insufficient policy enforcement in developer tools
- CVE-2022-1310: Use after free in regular expressions
- CVE-2022-1311: Use after free in Chrome OS shell
- CVE-2022-1312: Use after free in storage
- CVE-2022-1313: Use after free in tab groups
- CVE-2022-1314: Type Confusion in V8
- Various fixes from internal audits, fuzzing and other initiatives

Updated to version 100.0.4896.75:

- CVE-2022-1232: Type Confusion in V8 (boo#1198053)

Update to version 100.0.4896.60 (boo#1197680):

- CVE-2022-1125: Use after free in Portals
- CVE-2022-1127: Use after free in QR Code Generator
- CVE-2022-1128: Inappropriate implementation in Web Share API
- CVE-2022-1129: Inappropriate implementation in Full Screen Mode
- CVE-2022-1130: Insufficient validation of untrusted input in WebOTP
- CVE-2022-1131: Use after free in Cast UI
- CVE-2022-1132: Inappropriate implementation in Virtual Keyboard
- CVE-2022-1133: Use after free in WebRTC
- CVE-2022-1134: Type Confusion in V8
- CVE-2022-1135: Use after free in Shopping Cart
- CVE-2022-1136: Use after free in Tab Strip
- CVE-2022-1137: Inappropriate implementation in Extensions
- CVE-2022-1138: Inappropriate implementation in Web Cursor
- CVE-2022-1139: Inappropriate implementation in Background Fetch API
- CVE-2022-1141: Use after free in File Manager
- CVE-2022-1142: Heap buffer overflow in WebUI
- CVE-2022-1143: Heap buffer overflow in WebUI
- CVE-2022-1144: Use after free in WebUI
- CVE-2022-1145: Use after free in Extensions
- CVE-2022-1146: Inappropriate implementation in Resource Timing
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places