Lucene search

K
debianDebianDEBIAN:DSA-5244-1:E42C3
HistorySep 28, 2022 - 7:41 p.m.

[SECURITY] [DSA 5244-1] chromium security update

2022-09-2819:41:14
lists.debian.org
30
chromium" "cve-2022" "security update" "arbitrary code" "denial of service" "information disclosure" "bullseye" "debian

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

Low

EPSS

0.035

Percentile

91.6%


Debian Security Advisory DSA-5244-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
September 28, 2022 https://www.debian.org/security/faq


Package : chromium
CVE ID : CVE-2022-3201 CVE-2022-3304 CVE-2022-3305 CVE-2022-3306
CVE-2022-3307 CVE-2022-3308 CVE-2022-3309 CVE-2022-3310
CVE-2022-3311 CVE-2022-3312 CVE-2022-3313 CVE-2022-3314
CVE-2022-3315 CVE-2022-3316 CVE-2022-3317 CVE-2022-3318

Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.

For the stable distribution (bullseye), these problems have been fixed in
version 106.0.5249.61-1~deb11u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

Low

EPSS

0.035

Percentile

91.6%