openSUSE-SU-2022:0042-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:0042-1.json

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2022:0042-1

Related

Published

2022-02-17T16:44:01Z

Modified

2022-02-17T16:44:01Z

Summary

Security update for chromium

Details

This update for chromium fixes the following issues:

Chromium 98.0.4758.102 (boo#1195986)
- CVE-2022-0603: Use after free in File Manager
- CVE-2022-0604: Heap buffer overflow in Tab Groups
- CVE-2022-0605: Use after free in Webstore API
- CVE-2022-0606: Use after free in ANGLE
- CVE-2022-0607: Use after free in GPU
- CVE-2022-0608: Integer overflow in Mojo
- CVE-2022-0609: Use after free in Animation
- CVE-2022-0610: Inappropriate implementation in Gamepad API
- Various fixes from internal audits, fuzzing and other initiatives

References

Affected packages

SUSE:Package Hub 15 SP3 / chromium

Package

Name: chromium
Purl: purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

98.0.4758.102-bp153.2.63.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "98.0.4758.102-bp153.2.63.1",
            "chromium": "98.0.4758.102-bp153.2.63.1"
        }
    ]
}

openSUSE:Leap 15.3 / chromium

Package

Name: chromium
Purl: purl:rpm/suse/chromium&distro=openSUSE%20Leap%2015.3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

98.0.4758.102-bp153.2.63.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "98.0.4758.102-bp153.2.63.1",
            "chromium": "98.0.4758.102-bp153.2.63.1"
        }
    ]
}