Lucene search

FreeBSDB058380E-21A4-11EF-8A0F-A8A1599412C6

HistoryMay 30, 2024 - 12:00 a.m.

chromium -- multiple security fixes

2024-05-3000:00:00

vuxml.freebsd.org

chromium

security fixes

webrtc

buffer overflow

dawn

use after free

media session

out of bounds

keyboard inputs

presentation api

streams api

unix

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.6%

JSON

Chrome Releases reports:

This update includes 11 security fixes:

[339877165] High CVE-2024-5493: Heap buffer overflow in WebRTC. Reported by Cassidy Kim(@cassidy6564) on 2024-05-11
[338071106] High CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz on 2024-05-01
[338103465] High CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz on 2024-05-01
[338929744] High CVE-2024-5496: Use after free in Media Session. Reported by Cassidy Kim(@cassidy6564) on 2024-05-06
[339061099] High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs. Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab on 2024-05-07
[339588211] High CVE-2024-5498: Use after free in Presentation API. Reported by anymous on 2024-05-09
[339877167] High CVE-2024-5499: Out of bounds write in Streams API. Reported by anonymous on 2024-05-11

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchchromium< 125.0.6422.141UNKNOWN
FreeBSDanynoarchungoogled-chromium< 125.0.6422.141UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	chromium	< 125.0.6422.141	UNKNOWN
FreeBSD	any	noarch	ungoogled-chromium	< 125.0.6422.141	UNKNOWN

References

chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_30.html