ID de Prueba:	1.3.6.1.4.1.25623.1.0.833852
Categoría:	openSUSE Local Security Checks
Título:	openSUSE Security Advisory (openSUSE-SU-2024:0020-1)
Resumen:	The remote host is missing an update for the 'chromium' package(s) announced via the openSUSE-SU-2024:0020-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'chromium' package(s) announced via the openSUSE-SU-2024:0020-1 advisory. Vulnerability Insight: This update for chromium fixes the following issues: - Chromium 120.0.6099.216 (boo#1217839, boo#1218048, boo#1218302, boo#1218533, boo#1218719) * CVE-2024-0333: Insufficient data validation in Extensions * CVE-2024-0222: Use after free in ANGLE * CVE-2024-0223: Heap buffer overflow in ANGLE * CVE-2024-0224: Use after free in WebAudio * CVE-2024-0225: Use after free in WebGPU * CVE-2023-7024: Heap buffer overflow in WebRTC * CVE-2023-6702: Type Confusion in V8 * CVE-2023-6703: Use after free in Blink * CVE-2023-6704: Use after free in libavif (boo#1218303) * CVE-2023-6705: Use after free in WebRTC * CVE-2023-6706: Use after free in FedCM * CVE-2023-6707: Use after free in CSS * CVE-2023-6508: Use after free in Media Stream * CVE-2023-6509: Use after free in Side Panel Search * CVE-2023-6510: Use after free in Media Capture * CVE-2023-6511: Inappropriate implementation in Autofill * CVE-2023-6512: Inappropriate implementation in Web Browser UI Affected Software/OS: 'chromium' package(s) on openSUSE Leap 15.5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-6508 Debian Security Information: DSA-5573 (Google Search) https://www.debian.org/security/2023/dsa-5573 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MMHY76AWPA46MAFXPWDGJX6FEGXZVR5Z/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RI3UHCTFH6KWAJGDZ2TOLT6VHKW53WCC/ https://security.gentoo.org/glsa/202401-34 https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop.html https://crbug.com/1497984 Common Vulnerability Exposure (CVE) ID: CVE-2023-6509 https://crbug.com/1494565 Common Vulnerability Exposure (CVE) ID: CVE-2023-6510 https://crbug.com/1480152 Common Vulnerability Exposure (CVE) ID: CVE-2023-6511 https://crbug.com/1478613 Common Vulnerability Exposure (CVE) ID: CVE-2023-6512 https://crbug.com/1457702 Common Vulnerability Exposure (CVE) ID: CVE-2023-6702 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6NWZ23ZJ62XKWVNGHSIZQYILVJWH5BLI/ https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_12.html https://crbug.com/1501326 Common Vulnerability Exposure (CVE) ID: CVE-2023-6703 https://crbug.com/1502102 Common Vulnerability Exposure (CVE) ID: CVE-2023-6704 https://crbug.com/1504792 Common Vulnerability Exposure (CVE) ID: CVE-2023-6705 https://crbug.com/1505708 Common Vulnerability Exposure (CVE) ID: CVE-2023-6706 https://crbug.com/1500921 Common Vulnerability Exposure (CVE) ID: CVE-2023-6707 https://crbug.com/1504036 Common Vulnerability Exposure (CVE) ID: CVE-2023-7024 Debian Security Information: DSA-5585 (Google Search) https://www.debian.org/security/2023/dsa-5585 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U6JL4VHZMHFGEGQYTF74533ZNRWMCMMR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6M6AJDHUL6EDPURWQXGLUFJNDE7SOJT3/ https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_20.html https://crbug.com/1513170 Common Vulnerability Exposure (CVE) ID: CVE-2024-0222 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6C2HN4T2S6GYNTAUXLH45LQZHK7QPHP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYONA2XSNFMXLAW4IHLFI5UVV3QRNG5K/ https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html https://crbug.com/1501798 Common Vulnerability Exposure (CVE) ID: CVE-2024-0223 https://crbug.com/1505009 Common Vulnerability Exposure (CVE) ID: CVE-2024-0224 https://crbug.com/1505086 Common Vulnerability Exposure (CVE) ID: CVE-2024-0225 https://crbug.com/1506923 Common Vulnerability Exposure (CVE) ID: CVE-2024-0333 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPYCYENYQYADCOS6XG4JITUVRZ6HTE2B/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BXC7FJIAZRY3P72XC4Z4UOW2QDA7YX7/ https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_9.html https://crbug.com/1513379
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.