Bug 1199409 - VUL-0: chromium: multiple security issues fixed in 101.0.4951.64
VUL-0: chromium: multiple security issues fixed in 101.0.4951.64
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.4
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
Security Team bot
Depends on:
  Show dependency treegraph
Reported: 2022-05-10 21:29 UTC by Andreas Stieger
Modified: 2022-05-16 19:16 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2022-05-10 21:29:05 UTC

Fixed in 101.0.4951.64:

CVE-2022-1633: Use after free in Sharesheet
CVE-2022-1634: Use after free in Browser UI
CVE-2022-1635: Use after free in Permission Prompts
CVE-2022-1636: Use after free in Performance APIs
CVE-2022-1637: Inappropriate implementation in Web Contents
CVE-2022-1638: Heap buffer overflow in V8 Internationalization
CVE-2022-1639: Use after free in ANGLE
CVE-2022-1640: Use after free in Sharing
CVE-2022-1641: Use after free in Web UI Diagnostics
Comment 1 Andreas Stieger 2022-05-11 06:44:38 UTC
Comment 2 OBSbugzilla Bot 2022-05-11 08:40:04 UTC
This is an autogenerated message for OBS integration:
This bug (1199409) was mentioned in
https://build.opensuse.org/request/show/976204 Factory / chromium
https://build.opensuse.org/request/show/976205 Backports:SLE-15-SP3 / chromium
https://build.opensuse.org/request/show/976206 Backports:SLE-15-SP4 / chromium
Comment 3 OBSbugzilla Bot 2022-05-15 16:40:05 UTC
This is an autogenerated message for OBS integration:
This bug (1199409) was mentioned in
https://build.opensuse.org/request/show/977353 Backports:SLE-15-SP3 / chromium
Comment 4 Andreas Stieger 2022-05-16 17:40:46 UTC
Comment 5 Swamp Workflow Management 2022-05-16 19:16:52 UTC
openSUSE-SU-2022:0133-1: An update that fixes 9 vulnerabilities is now available.

Category: security (important)
Bug References: 1199409
CVE References: CVE-2022-1633,CVE-2022-1634,CVE-2022-1635,CVE-2022-1636,CVE-2022-1637,CVE-2022-1638,CVE-2022-1639,CVE-2022-1640,CVE-2022-1641
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP3 (src):    chromium-101.0.4951.64-bp153.2.91.1