SUSE Package Hub - openSUSE-2023-45

Update Info

openSUSE-2023-45

Security update for chromium

Type: security

Severity: important

Issued: 2023-02-13

Description:

This update for chromium fixes the following issues:

Chromium 110.0.5481.77 (boo#1208029):

  * CVE-2023-0696: Type Confusion in V8
  * CVE-2023-0697: Inappropriate implementation in Full screen mode
  * CVE-2023-0698: Out of bounds read in WebRTC
  * CVE-2023-0699: Use after free in GPU
  * CVE-2023-0700: Inappropriate implementation in Download
  * CVE-2023-0701: Heap buffer overflow in WebUI
  * CVE-2023-0702: Type Confusion in Data Transfer
  * CVE-2023-0703: Type Confusion in DevTools
  * CVE-2023-0704: Insufficient policy enforcement in DevTools
  * CVE-2023-0705: Integer overflow in Core
  * Various fixes from internal audits, fuzzing and other initiatives

- build with bundled libavif

References

CVE: CVE-2023-0705
CVE: CVE-2023-0704
CVE: CVE-2023-0703
CVE: CVE-2023-0702
CVE: CVE-2023-0701
CVE: CVE-2023-0700
CVE: CVE-2023-0699
CVE: CVE-2023-0698
CVE: CVE-2023-0697
CVE: CVE-2023-0696
Bugzilla: 1208029 VUL-0: chromium: multiple security issues fixed in 110.0.5481.77

Packages

chromium-110.0.5481.77-bp154.2.67.1