Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310886376HistoryApr 03, 2024 - 12:00 a.m.
Fedora: Security Advisory for chromium (FEDORA-2024-b4dab205d7)
2024-04-0300:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
5
fedora
security
advisory
chromium
fedora-2024-b4dab205d7
cve-2024-2883
cve-2024-2885
cve-2024-2886
cve-2024-2887
greenbone ag
webkit
blink
fedora 38
vendorfix
8.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.886376");
script_version("2024-04-18T05:05:33+0000");
script_cve_id("CVE-2024-2883", "CVE-2024-2885", "CVE-2024-2886", "CVE-2024-2887");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_tag(name:"last_modification", value:"2024-04-18 05:05:33 +0000 (Thu, 18 Apr 2024)");
script_tag(name:"creation_date", value:"2024-04-03 01:15:54 +0000 (Wed, 03 Apr 2024)");
script_name("Fedora: Security Advisory for chromium (FEDORA-2024-b4dab205d7)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC38");
script_xref(name:"Advisory-ID", value:"FEDORA-2024-b4dab205d7");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IQMRHKDEG4J7TMRRRGUGW6GS4MVBX5IT");
script_tag(name:"summary", value:"The remote host is missing an update for the 'chromium'
package(s) announced via the FEDORA-2024-b4dab205d7 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Chromium is an open-source web browser, powered by WebKit (Blink).");
script_tag(name:"affected", value:"'chromium' package(s) on Fedora 38.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "FC38") {
if(!isnull(res = isrpmvuln(pkg:"chromium", rpm:"chromium~123.0.6312.86~1.fc38", rls:"FC38"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
openvas
openvas
Google Chrome Security Update (stable-channel-update-for-desktop_26-2024-03) - Mac OS X
2024-03-27 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2024-0bb0e8f2a0)
2024-03-29 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2024-85531c965e)
2024-03-29 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: chromium-123.0.6312.86-1.fc40
2024-03-29 00:22:15
[SECURITY] Fedora 39 Update: chromium-123.0.6312.86-1.fc39
2024-03-29 01:13:09
[SECURITY] Fedora 38 Update: chromium-123.0.6312.86-1.fc38
2024-03-29 02:42:45
nessus
nessus
freebsd
freebsd
chromium -- multiple security fixes
2024-03-26 00:00:00
electron{27,28} -- multiple vulnerabilities
2024-04-03 00:00:00
qt6-webengine -- Multiple vulnerabilities
2024-04-03 00:00:00
kaspersky
kaspersky
KLA65334 Multiple vulnerabilities in Microsoft Browser
2024-03-27 00:00:00
KLA65382 Multiple vulnerabilities in Opera
2024-04-02 00:00:00
KLA65313 Multiple vulnerabilities in Google Chrome
2024-03-26 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2024-03-26 00:00:00
hivepro
hivepro
Google Patches Critical Zero-Day Exploits Found at Pwn2Own
2024-04-01 05:52:35
Attacks, Vulnerabilities and Actors 25 to 31 March 2024
2024-04-03 02:11:44
debian
debian
[SECURITY] [DSA 5648-1] chromium security update
2024-03-29 01:42:13
osv
osv
chromium - security update
2024-03-28 00:00:00
CVE-2024-2886
2024-03-26 21:15:53
CVE-2024-2885
2024-03-26 21:15:53
thn
thn
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability
2024-05-10 10:23:00
New Chrome Zero-Day Vulnerability CVE-2024-4761 Under Active Exploitation
2024-05-14 13:51:00
Google Patches Yet Another Actively Exploited Chrome Zero-Day Vulnerability
2024-05-16 03:01:00
debiancve
debiancve
ubuntucve
ubuntucve
vulnrichment
vulnrichment
cvelist
cvelist
mscve
mscve
Chromium: CVE-2024-2886 Use after free in WebCodecs
2024-03-27 07:00:00
Chromium: CVE-2024-2885 Use after free in Dawn
2024-03-27 07:00:00
Chromium: CVE-2024-2887 Type Confusion in WebAssembly
2024-03-27 07:00:00
veracode
veracode
nvd
nvd
cve
cve
zdi
zdi
alpinelinux
alpinelinux
CVE-2024-2887
2024-03-26 21:15:53
malwarebytes
malwarebytes
Update Chrome now! Google patches possible drive-by vulnerability
2024-03-28 11:25:58
redos
redos
ROS-20240507-09
2024-05-07 00:00:00
8.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
15.5%
Related for OPENVAS:1361412562310886376