[SECURITY] [DSA 5289-1] chromium security update

2022-11-2721:33:25

lists.debian.org

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.5%

JSON

Debian Security Advisory DSA-5289-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
November 27, 2022 https://www.debian.org/security/faq

Package : chromium
CVE ID : CVE-2022-4135

Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code.

For the stable distribution (bullseye), this problem has been fixed in
version 107.0.5304.121-1~deb11u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11ppc64elchromium-sandbox-dbgsym< 107.0.5304.121-1~deb11u1chromium-sandbox-dbgsym_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian11arm64chromium-common-dbgsym< 107.0.5304.121-1~deb11u1chromium-common-dbgsym_107.0.5304.121-1~deb11u1_arm64.deb
Debian11allchromium< 107.0.5304.121-1~deb11u1chromium_107.0.5304.121-1~deb11u1_all.deb
Debian11arm64chromium-sandbox-dbgsym< 107.0.5304.121-1~deb11u1chromium-sandbox-dbgsym_107.0.5304.121-1~deb11u1_arm64.deb
Debian11ppc64elchromium-sandbox< 107.0.5304.121-1~deb11u1chromium-sandbox_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian11arm64chromium-sandbox< 107.0.5304.121-1~deb11u1chromium-sandbox_107.0.5304.121-1~deb11u1_arm64.deb
Debian11ppc64elchromium-common-dbgsym< 107.0.5304.121-1~deb11u1chromium-common-dbgsym_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian11ppc64elchromium-driver< 107.0.5304.121-1~deb11u1chromium-driver_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian11ppc64elchromium-shell< 107.0.5304.121-1~deb11u1chromium-shell_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian11allchromium-l10n< 107.0.5304.121-1~deb11u1chromium-l10n_107.0.5304.121-1~deb11u1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	11	ppc64el	chromium-sandbox-dbgsym	< 107.0.5304.121-1~deb11u1	chromium-sandbox-dbgsym_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian	11	arm64	chromium-common-dbgsym	< 107.0.5304.121-1~deb11u1	chromium-common-dbgsym_107.0.5304.121-1~deb11u1_arm64.deb
Debian	11	all	chromium	< 107.0.5304.121-1~deb11u1	chromium_107.0.5304.121-1~deb11u1_all.deb
Debian	11	arm64	chromium-sandbox-dbgsym	< 107.0.5304.121-1~deb11u1	chromium-sandbox-dbgsym_107.0.5304.121-1~deb11u1_arm64.deb
Debian	11	ppc64el	chromium-sandbox	< 107.0.5304.121-1~deb11u1	chromium-sandbox_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian	11	arm64	chromium-sandbox	< 107.0.5304.121-1~deb11u1	chromium-sandbox_107.0.5304.121-1~deb11u1_arm64.deb
Debian	11	ppc64el	chromium-common-dbgsym	< 107.0.5304.121-1~deb11u1	chromium-common-dbgsym_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian	11	ppc64el	chromium-driver	< 107.0.5304.121-1~deb11u1	chromium-driver_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian	11	ppc64el	chromium-shell	< 107.0.5304.121-1~deb11u1	chromium-shell_107.0.5304.121-1~deb11u1_ppc64el.deb
Debian	11	all	chromium-l10n	< 107.0.5304.121-1~deb11u1	chromium-l10n_107.0.5304.121-1~deb11u1_all.deb