Lucene search

K
debianDebianDEBIAN:DSA-5212-1:C14A4
HistoryAug 17, 2022 - 10:57 p.m.

[SECURITY] [DSA 5212-1] chromium security update

2022-08-1722:57:57
lists.debian.org
33
debian
chromium
security
update
cve
bullseye
information disclosure
arbitrary code
denial of service

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.037

Percentile

92.1%


Debian Security Advisory DSA-5212-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
August 18, 2022 https://www.debian.org/security/faq


Package : chromium
CVE ID : CVE-2022-2852 CVE-2022-2853 CVE-2022-2854 CVE-2022-2855
CVE-2022-2856 CVE-2022-2857 CVE-2022-2858 CVE-2022-2859
CVE-2022-2860 CVE-2022-2861
Debian Bug : 956012 1005808 1010407 1013268

Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.

For the stable distribution (bullseye), these problems have been fixed in
version 104.0.5112.101-1~deb11u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.037

Percentile

92.1%