Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Mageia 8: 2023-0016 High: Chromium-Browser-Buffer Overflow Fix

mageia
Calendar Grey January 24, 2023
Dist Mageia Esm H88
Mageia Security Patch: firefox-browser-stable addressed several vulnerabilities to enhance the safety of internet navigation for users.
The chromium-browser-stable package has been updated to the 109.0.5414.74 release, fixing 17 vulnerabilities

Summary

The chromium-browser-stable package has been updated to the 109.0.5414.74 release, fixing 17 vulnerabilities.
Some of the security fixes are -
High CVE-2023-0128 Use after free in Overview Mode. Reported by Khalil Zhani on 2022-08-16 High CVE-2023-0129 Heap buffer overflow in Network Service. Reported by asnine on 2022-11-07 Medium CVE-2023-0130 Inappropriate implementation in Fullscreen API. Reported by Hafiizh on 2022-09-30 Medium CVE-2023-0131 Inappropriate implementation in iframe Sandbox. Reported by NDevTK on 2022-08-28 Medium CVE-2023-0132 Inappropriate implementation in Permission prompts. Reported by Jasper Rebane (popstonia) on 2022-10-05 Medium CVE-2023-0133 Inappropriate implementation in Permission prompts. Reported by Alesandro Ortiz on 2022-10-17 Medium CVE-2023-0134 Use after free in Cart. Reported by Chaoyuan Peng (@ret2happy) on 2022-11-17 Medium CVE-2023-0135 Use after free in Cart. Reported by Chaoyuan Peng (@ret2happy) on 2022-11-18 Medium CVE-2023-0136 Inapprop...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=31389

- https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

- https://www.androidpolice.com/google-chrome-109/

- https://www.cve.org/CVERecord?id=CVE-2023-0128

- https://www.cve.org/CVERecord?id=CVE-2023-0129

- https://www.cve.org/CVERecord?id=CVE-2023-0130

- https://www.cve.org/CVERecord?id=CVE-2023-0131

- https://www.cve.org/CVERecord?id=CVE-2023-0132

- https://www.cve.org/CVERecord?id=CVE-2023-0133

- https://www.cve.org/CVERecord?id=CVE-2023-0134

- https://www.cve.org/CVERecord?id=CVE-2023-0135

- https://www.cve.org/CVERecord?id=CVE-2023-0136

- https://www.cve.org/CVERecord?id=CVE-2023-0137

- https://www.cve.org/CVERecord?id=CVE-2023-0138

- https://www.cve.org/CVERecord?id=CVE-2023-0139

- https://www.cve.org/CVERecord?id=CVE-2023-0140

- https://www.cve.org/CVERecord?id=CVE-2023-0141

Topics%20covered

Topics Covered

security advisory high severity buffer overflow software update security fix chromium-browser mageia

Resolution

SRPMS

- 8/core/chromium-browser-stable-109.0.5414.74-1.mga8

Publication date: 24 Jan 2023
URL: https://advisories.mageia.org/MGASA-2023-0016.html
Type: security
CVE: CVE-2023-0128, CVE-2023-0129, CVE-2023-0130, CVE-2023-0131, CVE-2023-0132, CVE-2023-0133, CVE-2023-0134, CVE-2023-0135, CVE-2023-0136, CVE-2023-0137, CVE-2023-0138, CVE-2023-0139, CVE-2023-0140, CVE-2023-0141

Topics%20covered

Topics Covered

security advisory high severity buffer overflow software update security fix chromium-browser mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here