Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Mageia 9 MGASA-2024-0230 High: Chromium-Browser-Stable Security Issues

mageia
Calendar Grey June 20, 2024
Dist Mageia Esm H88
Improvements to firefox-browser-stable tackle numerous vulnerabilities for Mageia, providing a more secure internet surfing experience.
The chromium-browser-stable package has been updated to the 126.0.6478.61 release

Summary

The chromium-browser-stable package has been updated to the 126.0.6478.61 release. It includes 21 security fixes. Some of them are: * High CVE-2024-5830: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2024-05-24 * High CVE-2024-5831: Use after free in Dawn. Reported by wgslfuzz on 2024-05-07 * High CVE-2024-5832: Use after free in Dawn. Reported by wgslfuzz on 2024-05-13 * High CVE-2024-5833: Type Confusion in V8. Reported by @ginggilBesel on 2024-05-24 * High CVE-2024-5834: Inappropriate implementation in Dawn. Reported by gelatin dessert on 2024-05-26 * High CVE-2024-5835: Heap buffer overflow in Tab Groups. Reported by Weipeng Jiang (@Krace) of VRI on 2024-05-22 * High CVE-2024-5836: Inappropriate Implementation in DevTools. Reported by Allen Ding on 2024-05-21 * High CVE-2024-5837: Type Confusion in V8. Reported by Anonymous on 2024-05-23 * High CVE-2024-5838: Type Confusion in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-05-24 * Medium CVE-2024-583...

References

- https://bugs.mageia.org/show_bug.cgi?id=33308

- https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop_13.html

- https://chromereleases.googleblog.com/2024/06/stable-channel-update-for-desktop.html

- https://www.cve.org/CVERecord?id=CVE-2024-5830

- https://www.cve.org/CVERecord?id=CVE-2024-5831

- https://www.cve.org/CVERecord?id=CVE-2024-5832

- https://www.cve.org/CVERecord?id=CVE-2024-5833

- https://www.cve.org/CVERecord?id=CVE-2024-5834

- https://www.cve.org/CVERecord?id=CVE-2024-5835

- https://www.cve.org/CVERecord?id=CVE-2024-5836

- https://www.cve.org/CVERecord?id=CVE-2024-5837

- https://www.cve.org/CVERecord?id=CVE-2024-5838

- https://www.cve.org/CVERecord?id=CVE-2024-5839

- https://www.cve.org/CVERecord?id=CVE-2024-5840

- https://www.cve.org/CVERecord?id=CVE-2024-5841

- https://www.cve.org/CVERecord?id=CVE-2024-5842

- https://www.cve.org/CVERecord?id=CVE-2024-5843

- https://www.cve.org/CVERecord?id=CVE-2024-5844

- https://www.cve.org/CVERecord?id=CVE-2024-5845

- https://www.cve.org/CVERecord?id=CVE-2024-5846

- https://www.cve.org/CVERecord?id=CVE-2024-5847

Resolution

SRPMS

- 9/tainted/chromium-browser-stable-126.0.6478.61-1.mga9.tainted

Publication date: 20 Jun 2024
URL: https://advisories.mageia.org/MGASA-2024-0230.html
Type: security
CVE: CVE-2024-5830, CVE-2024-5831, CVE-2024-5832, CVE-2024-5833, CVE-2024-5834, CVE-2024-5835, CVE-2024-5836, CVE-2024-5837, CVE-2024-5838, CVE-2024-5839, CVE-2024-5840, CVE-2024-5841, CVE-2024-5842, CVE-2024-5843, CVE-2024-5844, CVE-2024-5845, CVE-2024-5846, CVE-2024-5847

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here