Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 495
Alerts This Week
Warning Icon 1 495

Mageia 8: 2022-0158 Moderate Risk: Chromium-Browser Buffer Overflow

mageia
Calendar Grey May 2, 2022
Dist Mageia Esm H88
Recent updates to chromium-browser-stable packages address several security issues impacting Mageia 8 web browsers.
Use after free in Vulkan

Summary

Use after free in Vulkan. (CVE-2022-1477) Use after free in SwiftShader. (CVE-2022-1478) Use after free in ANGLE. (CVE-2022-1479) Use after free in Sharing. (CVE-2022-1481) Inappropriate implementation in WebGL. (CVE-2022-1482) Heap buffer overflow in WebGPU. (CVE-2022-1483) Heap buffer overflow in Web UI Settings. (CVE-2022-1484) Use after free in File System API. (CVE-2022-1485) Type Confusion in V8. (CVE-2022-1486) Use after free in Ozone. (CVE-2022-1487) Inappropriate implementation in Extensions API. (CVE-2022-1488) Out of bounds memory access in UI Shelf. (CVE-2022-1489) Use after free in Browser Switcher. (CVE-2022-1490) Use after free in Bookmarks. (CVE-2022-1491) Insufficient data validation in Blink Editing. (CVE-2022-1492) Use after free in Dev Tools. (CVE-2022-1493) Insufficient data validation in Trusted Types. (CVE-2022-1494) Incorrect security UI in Downloads. (CVE-2022-1495) Use after free in File Manager. (CVE-2022-1496) Inappropriate implementation in Input. (CVE-2...

References

- https://bugs.mageia.org/show_bug.cgi?id=30350

- https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.html

- https://www.cve.org/CVERecord?id=CVE-2022-1477

- https://www.cve.org/CVERecord?id=CVE-2022-1478

- https://www.cve.org/CVERecord?id=CVE-2022-1479

- https://www.cve.org/CVERecord?id=CVE-2022-1481

- https://www.cve.org/CVERecord?id=CVE-2022-1482

- https://www.cve.org/CVERecord?id=CVE-2022-1483

- https://www.cve.org/CVERecord?id=CVE-2022-1484

- https://www.cve.org/CVERecord?id=CVE-2022-1485

- https://www.cve.org/CVERecord?id=CVE-2022-1486

- https://www.cve.org/CVERecord?id=CVE-2022-1487

- https://www.cve.org/CVERecord?id=CVE-2022-1488

- https://www.cve.org/CVERecord?id=CVE-2022-1489

- https://www.cve.org/CVERecord?id=CVE-2022-1490

- https://www.cve.org/CVERecord?id=CVE-2022-1491

- https://www.cve.org/CVERecord?id=CVE-2022-1492

- https://www.cve.org/CVERecord?id=CVE-2022-1493

- https://www.cve.org/CVERecord?id=CVE-2022-1494

- https://www.cve.org/CVERecord?id=CVE-2022-1495

- https://www.cve.org/CVERecord?id=CVE-2022-1496

- https://www.cve.org/CVERecord?id=CVE-2022-1497

- https://www.cve.org/CVERecord?id=CVE-2022-1498

- https://www.cve.org/CVERecord?id=CVE-2022-1499

- https://www.cve.org/CVERecord?id=CVE-2022-1500

- https://www.cve.org/CVERecord?id=CVE-2022-1501

Resolution

SRPMS

- 8/core/chromium-browser-stable-101.0.4951.41-1.mga8

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 02 May 2022
URL: https://advisories.mageia.org/MGASA-2022-0158.html
Type: security
CVE: CVE-2022-1477, CVE-2022-1478, CVE-2022-1479, CVE-2022-1481, CVE-2022-1482, CVE-2022-1483, CVE-2022-1484, CVE-2022-1485, CVE-2022-1486, CVE-2022-1487, CVE-2022-1488, CVE-2022-1489, CVE-2022-1490, CVE-2022-1491, CVE-2022-1492, CVE-2022-1493, CVE-2022-1494, CVE-2022-1495, CVE-2022-1496, CVE-2022-1497, CVE-2022-1498, CVE-2022-1499, CVE-2022-1500, CVE-2022-1501

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.