Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 36: 2023-12b28d0d37 Critical: Chromium Implementation Flaws

fedora
Calendar Grey May 10, 2023
Dist Fedora Esm H88
Ubuntu refreshes Firefox to resolve multiple vulnerability concerns, tackling flaws in execution and validation of user inputs.
update to 113.0.5672.64

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

update to 113.0.5672.64. Fixes the following security issues: CVE-2023-2459

CVE-2023-2460 CVE-2023-2461 CVE-2023-2462 CVE-2023-2463 CVE-2023-2464

CVE-2023-2465 CVE-2023-2466 CVE-2023-2467 CVE-2023-2468

* Wed May 3 2023 Than Ngo - 113.0.5672.63-1

- update to 113.0.5672.63

* Sun Apr 23 2023 Than Ngo - 112.0.5615.165-2

- make --use-gl=egl default for x11/wayland

- enable WebUIDarkMode

[ 1 ] Bug #2192762 - CVE-2023-2459 chromium-browser: Inappropriate implementation in Prompts

https://bugzilla.redhat.com/show_bug.cgi?id=2192762

[ 2 ] Bug #2192763 - CVE-2023-2460 chromium-browser: Insufficient validation of untrusted input in Extensions

https://bugzilla.redhat.com/show_bug.cgi?id=2192763

[ 3 ] Bug #2192764 - CVE-2023-2461 chromium-browser: Use after free in OS Inputs

https://bugzilla.redhat.com/show_bug.cgi?id=2192764

[ 4 ] Bug #2192765 - CVE-2023-2462 chromium-browser: Inappropriate implementation in Prompts

https://bugzilla.redhat.com/show_bug.cgi?id=2192765

[ 5 ] Bug #2192766 - CVE-2023-2463 chromium-browser: Inappropriate implementation in Full Screen Mode

https://bugzilla.redhat.com/show_bug.cgi?id=2192766

[ 6 ] Bug #2192767 - CVE-2023-2464 chromium-browser: Inappropriate implementation in PictureInPicture

https://bugzilla.redhat.com/show_bug.cgi?id=2192767

[ 7 ] Bug #2192768 - CVE-2023-2465 chromium-browser: Inappropriate implementation in CORS

https://bugzilla.redhat.com/show_bug.cgi?id=2192768

[ 8 ] Bug #2192769 - CVE-2023-2466 chromium-browser: Inappropriate implementation in Prompts

https://bugzilla.redhat.com/show_bug.cgi?id=2192769

[ 9 ] Bug #2192770 - CVE-2023-2467 chromium-browser: Inappropriate implementation in Prompts

https://bugzilla.redhat.com/show_bug.cgi?id=2192770

[ 10 ] Bug #2192771 - CVE-2023-2468 chromium-browser: Inappropriate implementation in PictureInPicture

https://bugzilla.redhat.com/show_bug.cgi?id=2192771

su -c 'dnf upgrade --advisory FEDORA-2023-12b28d0d37' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it:

Topics%20covered

Topics Covered

security advisory critical Fedora update notification input validation chromium implementation flaws

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 36
Version: 113.0.5672.63
Release: 1.fc36
URL: https://www.chromium.org/Home/
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory critical Fedora update notification input validation chromium implementation flaws

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here