Bugzilla – Bug 1227979
VUL-0: chromium,ungoogled-chromium: multiple vulnerabilities fixed in 126.0.6478.182
Last modified: 2024-07-17 19:25:02 UTC
The Stable channel has been updated to 126.0.6478.182/183 for Windows, Mac and 126.0.6478.182 for Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. - High CVE-2024-6772: Inappropriate implementation in V8. Reported by 5fceb6172bbf7e2c5a948183b53565b9 on 2024-06-12 - High CVE-2024-6773: Type Confusion in V8. Reported by 2ourc3 | Salim Largo on 2024-06-17 - High CVE-2024-6774: Use after free in Screen Capture. Reported by lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-06-13 - High CVE-2024-6775: Use after free in Media Stream. Reported by Anonymous on 2024-06-15 - High CVE-2024-6776: Use after free in Audio. Reported by lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group on 2024-06-12 - High CVE-2024-6777: Use after free in Navigation. Reported by Sven Dysthe (@svn-dys) on 2024-06-07 - High CVE-2024-6778: Race in DevTools. Reported by Allen Ding on 2024-05-16 - High CVE-2024-6779: Out of bounds memory access in V8. Reported by Seunghyun Lee (@0x10n) on 2024-07-06 https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html
This is an autogenerated message for OBS integration: This bug (1227979) was mentioned in https://build.opensuse.org/request/show/1188247 Factory / chromium https://build.opensuse.org/request/show/1188248 Backports:SLE-15-SP5+Backports:SLE-15-SP6 / chromium