Lucene search

Gentoo FoundationMGASA-2023-0076

HistoryMar 02, 2023 - 12:14 a.m.

Updated chromium-browser-stable packages fix security vulnerability

2023-03-0200:14:31

Gentoo Foundation

advisories.mageia.org

chromium

update

security vulnerabilities

cve-2023-0927

cve-2023-0928

cve-2023-0929

cve-2023-0930

cve-2023-0931

cve-2023-0932

cve-2023-0933

cve-2023-0941

unix

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

69.5%

JSON

Chromium updated Chromium to 110.0.5481.177 to fix vulnerabilities including [CVE-2023-0927] Use after free in Web Payments API. [CVE-2023-0928] Use after free in SwiftShader. [CVE-2023-0929] Use after free in Vulkan. [CVE-2023-0930] Heap buffer overflow in Video. [CVE-2023-0931] Use after free in Video. [CVE-2023-0932] Use after free in WebRTC. [CVE-2023-0933] Integer overflow in PDF. [CVE-2023-0941] Use after free in Prompts.

OSVersionArchitecturePackageVersionFilename
Mageia8noarchchromium-browser-stable< 110.0.5481.177-1chromium-browser-stable-110.0.5481.177-1.mga8

OS	Version	Architecture	Package	Version	Filename
Mageia	8	noarch	chromium-browser-stable	< 110.0.5481.177-1	chromium-browser-stable-110.0.5481.177-1.mga8

References

bugs.mageia.org/show_bug.cgi?id=31534

chromereleases.googleblog.com/2023/02/stable-channel-desktop-update_22.html

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

69.5%

JSON

Related for MGASA-2023-0076