Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-5317-1:A7FC7
HistoryJan 13, 2023 - 7:18 p.m.

[SECURITY] [DSA 5317-1] chromium security update

2023-01-1319:18:31
lists.debian.org
3

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

54.6%

JSON

Debian Security Advisory DSA-5317-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
January 13, 2023 https://www.debian.org/security/faq

Package : chromium
CVE ID : CVE-2023-0141 CVE-2023-0140 CVE-2023-0139 CVE-2023-0138
CVE-2023-0137 CVE-2023-0136 CVE-2023-0135 CVE-2023-0134
CVE-2023-0133 CVE-2023-0132 CVE-2023-0131 CVE-2023-0130
CVE-2023-0129 CVE-2023-0128

Multiple security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.

For the stable distribution (bullseye), this problem has been fixed in
version 109.0.5414.74-2~deb11u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Related

nessus 10
openvas 6
kaspersky 2
freebsd 1
chrome 2
mageia 1
osv 1
altlinux 1
mscve 12
prion 14
debiancve 14
cve 14
ubuntucve 14
gentoo 2
veracode 14
cnvd 4
attackerkb 1
alpinelinux 1
avleonov 1
nessus
nessus
Google Chrome < 109.0.5414.87 Multiple Vulnerabilities (deprecated)
2023-01-10 00:00:00
Google Chrome < 109.0.5414.74 Multiple Vulnerabilities
2023-01-10 00:00:00
openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0016-1)
2023-01-13 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0016)
2023-03-28 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop-2023-01) - Linux
2023-01-11 00:00:00
openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0016-1)
2024-03-04 00:00:00
kaspersky
kaspersky
KLA20150 Multiple vulnerabilities in Google Chrome
2023-01-10 00:00:00
KLA20163 Multiple vulnerabilities in Microsoft Browser
2023-01-12 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2023-01-10 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2023-01-10 00:00:00
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-01-13 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2023-01-24 10:58:25
osv
osv
chromium - security update
2023-01-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package yandex-browser-stable version 23.3.1.916-alt1
2023-04-11 00:00:00
mscve
mscve
Chromium:CVE-2023-0140: Inappropriate implementation in File System API
2023-01-12 20:43:55
Chromium:CVE-2023-0134: Use after free in Cart
2023-01-12 20:43:39
Chromium:CVE-2023-0132: Inappropriate implementation in Permission prompts
2023-01-12 20:43:34
prion
prion
Design/Logic Flaw
2023-01-10 20:15:00
Input validation
2023-01-10 20:15:00
Design/Logic Flaw
2023-01-10 20:15:00
debiancve
debiancve
CVE-2023-0130
2023-01-10 20:15:10
CVE-2023-0134
2023-01-10 20:15:11
CVE-2023-0140
2023-01-10 20:15:11
cve
cve
CVE-2023-0140
2023-01-10 20:15:11
CVE-2023-0134
2023-01-10 20:15:11
CVE-2023-0139
2023-01-10 20:15:11
ubuntucve
ubuntucve
CVE-2023-0140
2023-01-10 00:00:00
CVE-2023-0141
2023-01-10 00:00:00
CVE-2023-0137
2023-01-10 00:00:00
gentoo
gentoo
Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
2023-05-03 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-03-12 22:34:23
Denial Of Service (DoS)
2023-03-12 22:35:06
Denial Of Service (DoS)
2023-03-12 22:35:44
cnvd
cnvd
Google Chrome Buffer Overflow Vulnerability (CNVD-2023-12026)
2023-01-12 00:00:00
Google Chrome Information Disclosure Vulnerability (CNVD-2023-12025)
2023-01-12 00:00:00
Google Chrome Input Validation Error Vulnerability (CNVD-2023-12024)
2023-01-12 00:00:00
attackerkb
attackerkb
CVE-2023-0129
2023-01-10 00:00:00
alpinelinux
alpinelinux
CVE-2023-0129
2023-01-10 20:15:10
avleonov
avleonov
Microsoft Patch Tuesday February 2023: Win Graphics RCE, Edge RCE, Publisher SFB, CLFS EoP, Exchange RCEs, Word RCE, HoloLens1
2023-02-26 16:37:52

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

54.6%

JSON
Related for DEBIAN:DSA-5317-1:A7FC7
nessus10openvas6kaspersky2freebsd1chrome2mageia1osv1altlinux1mscve12prion14debiancve14cve14ubuntucve14gentoo2veracode14cnvd4attackerkb1alpinelinux1avleonov1