Mageia 9: 2023-0289 Critical Security Advisory for Chromium Browser

mageia

October 19, 2023

The chromium-browser-stable package has been updated to the 118.0.5993.70 release, fixing 20 bugs and vulnerabilities

Summary

The chromium-browser-stable package has been updated to the 118.0.5993.70 release, fixing 20 bugs and vulnerabilities.
Some of the security fixes are:
Critical CVE-2023-5218: Use after free in Site Isolation. Reported by @18 on 2023-09-27
Medium CVE-2023-5487: Inappropriate implementation in Fullscreen. Reported by Anonymous on 2020-03-17
Medium CVE-2023-5484: Inappropriate implementation in Navigation. Reported by Thomas Orlita on 2023-02-11
Medium CVE-2023-5475: Inappropriate implementation in DevTools. Reported by Axel Chong on 2023-08-30
Medium CVE-2023-5483: Inappropriate implementation in Intents. Reported by Axel Chong on 2023-03-17
Medium CVE-2023-5481: Inappropriate implementation in Downloads. Reported by Om Apip on 2023-06-28
Medium CVE-2023-5476: Use after free in Blink History. Reported by Yunqin Sun on 2023-08-20
Medium CVE-2023-5474: Heap buffer overflow in PDF. Reported by [pwn2car] on 2023-09-15
Medium CVE-2023-5479: Inappropriate implementation in Extensions API. R...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=32381

- chromium-browser-stable-118.0.5993.70-1.mga9.tainted

- https://www.cve.org/CVERecord?id=CVE-2023-5218

- https://www.cve.org/CVERecord?id=CVE-2023-5487

- https://www.cve.org/CVERecord?id=CVE-2023-5484

- https://www.cve.org/CVERecord?id=CVE-2023-5475

- https://www.cve.org/CVERecord?id=CVE-2023-5483

- https://www.cve.org/CVERecord?id=CVE-2023-5481

- https://www.cve.org/CVERecord?id=CVE-2023-5476

- https://www.cve.org/CVERecord?id=CVE-2023-5474

- https://www.cve.org/CVERecord?id=CVE-2023-5479

- https://www.cve.org/CVERecord?id=CVE-2023-5485

- https://www.cve.org/CVERecord?id=CVE-2023-5478

- https://www.cve.org/CVERecord?id=CVE-2023-5477

- https://www.cve.org/CVERecord?id=CVE-2023-5486

- https://www.cve.org/CVERecord?id=CVE-2023-5473

Topics Covered

security advisory critical issue security fix browser update Chromium Mageia

Resolution

SRPMS

- 9/tainted/chromium-browser-stable-118.0.5993.70-1.mga9.tainted

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 19 Oct 2023

URL: https://advisories.mageia.org/MGASA-2023-0289.html

Type: security

CVE: CVE-2023-5218, CVE-2023-5487, CVE-2023-5484, CVE-2023-5475, CVE-2023-5483, CVE-2023-5481, CVE-2023-5476, CVE-2023-5474, CVE-2023-5479, CVE-2023-5485, CVE-2023-5478, CVE-2023-5477, CVE-2023-5486, CVE-2023-5473

Topics Covered

security advisory critical issue security fix browser update Chromium Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9: 2023-0289 Critical Security Advisory for Chromium Browser

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9: 2023-0289 Critical Security Advisory for Chromium Browser

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!