MGASA-2022-0480

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2022-0480.html
Import Source
https://advisories.mageia.org/MGASA-2022-0480.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2022-0480
Related
Published
2022-12-24T09:14:14Z
Modified
2022-12-24T08:04:53Z
Summary
Updated chromium-browser-stable packages fix security vulnerability
Details

The chromium-browser-stable package has been updated to the 108.0.5359.124 release, fixing 8 vulnerabilities.

Some of the security fixes are ...

High CVE-2022-4436: Use after free in Blink Media. Reported by Anonymous on 2022-11-15

High CVE-2022-4437: Use after free in Mojo IPC. Reported by koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research Institute on 2022-11-30

High CVE-2022-4438: Use after free in Blink Frames. Reported by Anonymous on 2022-11-07

High CVE-2022-4439: Use after free in Aura. Reported by Anonymous on 2022-11-22

Medium CVE-2022-4440: Use after free in Profiles. Reported by Anonymous on 2022-11-09

References
Credits

Affected packages

Mageia:8 / chromium-browser-stable

Package

Name
chromium-browser-stable
Purl
pkg:rpm/mageia/chromium-browser-stable?distro=mageia-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
108.0.5359.124-1.mga8

Ecosystem specific 

{
    "section": "core"
}