Bugzilla – Bug 1224341
VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 125.0.6422.60
Last modified: 2024-05-22 11:28:04 UTC
TBD][340221135] High CVE-2024-4947: Type Confusion in V8. Reported by Vasily Berdnikov (@vaber_b) and Boris Larin (@oct0xor) of Kaspersky on 2024-05-13 [TBD][333414294] High CVE-2024-4948: Use after free in Dawn. Reported by wgslfuzz on 2024-04-09 [$7000][326607001] Medium CVE-2024-4949: Use after free in V8. Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team on 2024-02-24 [$1000][40065403] Low CVE-2024-4950: Inappropriate implementation in Downloads. Reported by Shaheen Fazim on 2023-06-06
https://build.opensuse.org/request/show/1175076 https://build.opensuse.org/request/show/1175078
This is an autogenerated message for OBS integration: This bug (1224341) was mentioned in https://build.opensuse.org/request/show/1175672 Backports:SLE-15-SP5 / chromium
openSUSE-SU-2024:0136-1: An update that fixes 5 vulnerabilities is now available. Category: security (critical) Bug References: 1224208,1224294,1224341 CVE References: CVE-2024-4761,CVE-2024-4947,CVE-2024-4948,CVE-2024-4949,CVE-2024-4950 JIRA References: Sources used: openSUSE Backports SLE-15-SP5 (src): chromium-125.0.6422.60-bp155.2.82.1
done