Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

openSUSE: 2024:0267-1 Important: Type Confusion and Buffer Overflow Fixes

opensuse
Calendar Grey August 30, 2024
Dist Opensuse Esm H88
An important security update for chromium fixes four issues, improving stability for openSUSE users.
An update that fixes four vulnerabilities is now available

Description

This update for chromium fixes the following issues:

Chromium 128.0.6613.113 (boo#1229897)

* CVE-2024-7969: Type Confusion in V8

* CVE-2024-8193: Heap buffer overflow in Skia

* CVE-2024-8194: Type Confusion in V8

* CVE-2024-8198: Heap buffer overflow in Skia

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP6:

zypper in -t patch openSUSE-2024-267=1

- openSUSE Backports SLE-15-SP5:

zypper in -t patch openSUSE-2024-267=1

Package List

- openSUSE Backports SLE-15-SP6 (aarch64 x86_64):

chromedriver-128.0.6613.113-bp156.2.20.1

chromedriver-debuginfo-128.0.6613.113-bp156.2.20.1

chromium-128.0.6613.113-bp156.2.20.1

chromium-debuginfo-128.0.6613.113-bp156.2.20.1

- openSUSE Backports SLE-15-SP5 (aarch64 x86_64):

chromedriver-128.0.6613.113-bp155.2.108.1

chromium-128.0.6613.113-bp155.2.108.1

References

https://www.suse.com/security/cve/CVE-2024-7969.html

https://www.suse.com/security/cve/CVE-2024-8193.html

https://www.suse.com/security/cve/CVE-2024-8194.html

https://www.suse.com/security/cve/CVE-2024-8198.html

https://bugzilla.suse.com/1229897

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2024:0267-1
Rating: important
Affected Products: openSUSE Backports SLE-15-SP5 openSUSE Backports SLE-15-SP6 .

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here