1218891 – VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.224

Bug 1218891 - VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6099.224

Summary: VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 120.0.6...

Status:	RESOLVED DUPLICATE of bug 1218892

Alias:	None

Product:	openSUSE Tumbleweed
Classification:	openSUSE
Component:	Security (show other bugs)
Version:	Current
Hardware:	Other Other

Priority:	P5 - None Severity: Major (vote)
Target Milestone:	---
Assignee:	Callum Farmer
QA Contact:	Security Team bot

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-01-17 08:26 UTC by Thomas Leroy
Modified:	2024-01-17 08:50 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Leroy 2024-01-17 08:26:34 UTC

The Stable channel has been updated to 120.0.6099.234 for Mac and 120.0.6099.224 for Linux and 120.0.6099.224/225 to Windows which will roll out over the coming days/weeks.

CVE-2024-0517: Out of bounds write in V8
CVE-2024-0518: Type Confusion in V8
CVE-2024-0519: Out of bounds memory access in V8

Google is aware of reports that an exploit for CVE-2024-0519 exists in the wild.

References:
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

Comment 1 Thomas Leroy 2024-01-17 08:35:25 UTC

Race between IMs

*** This bug has been marked as a duplicate of bug 1218892 ***