Lucene search
Copyright (C) 2023 Greenbone AGOPENVAS:1361412562310885328HistoryNov 27, 2023 - 12:00 a.m.
Fedora: Security Advisory for chromium (FEDORA-2023-5b46676afa)
2023-11-2700:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
12
fedora
security
advisory
chromium
update
web browser
webkit
vulnerable package
fedora 38
install
vendorfix
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.002
Percentile
55.4%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.885328");
script_version("2023-12-07T05:05:41+0000");
script_cve_id("CVE-2023-5997", "CVE-2023-6112");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2023-12-07 05:05:41 +0000 (Thu, 07 Dec 2023)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2023-11-21 01:01:00 +0000 (Tue, 21 Nov 2023)");
script_tag(name:"creation_date", value:"2023-11-27 02:16:35 +0000 (Mon, 27 Nov 2023)");
script_name("Fedora: Security Advisory for chromium (FEDORA-2023-5b46676afa)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2023 Greenbone AG");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC38");
script_xref(name:"Advisory-ID", value:"FEDORA-2023-5b46676afa");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JHUI5HW7QXT3U74MJMTLUMF5REDO5HD5");
script_tag(name:"summary", value:"The remote host is missing an update for the 'chromium'
package(s) announced via the FEDORA-2023-5b46676afa advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Chromium is an open-source web browser, powered by WebKit (Blink).");
script_tag(name:"affected", value:"'chromium' package(s) on Fedora 38.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "FC38") {
if(!isnull(res = isrpmvuln(pkg:"chromium", rpm:"chromium~119.0.6045.159~2.fc38", rls:"FC38"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
openvas
openvas
Debian: Security Advisory (DSA-5556-1)
2023-11-20 00:00:00
Fedora: Security Advisory (FEDORA-2023-9425bb0115)
2023-11-23 00:00:00
openSUSE: Security Advisory for opera (openSUSE-SU-2023:0385-1)
2024-03-04 00:00:00
nessus
nessus
Debian DSA-5556-1 : chromium - security update
2023-11-17 00:00:00
FreeBSD : chromium -- multiple security fixes (0da4db89-84bf-11ee-8290-a8a1599412c6)
2023-11-16 00:00:00
Fedora 39 : chromium (2023-9425bb0115)
2023-11-22 00:00:00
kaspersky
kaspersky
KLA61973 Multiple vulnerabilities in Google Chrome
2023-11-14 00:00:00
KLA61997 Multiple vulnerabilities in Microsoft Browser
2023-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: chromium-119.0.6045.159-2.fc38
2023-11-26 03:05:53
[SECURITY] Fedora 37 Update: chromium-119.0.6045.159-2.fc37
2023-11-28 00:50:23
[SECURITY] Fedora 39 Update: chromium-119.0.6045.159-2.fc39
2023-11-23 01:25:38
chrome
chrome
Stable Channel Update for Desktop
2023-11-14 00:00:00
osv
osv
ungoogled-chromium-119.0.6045.159-1.1 on GA media
2024-06-15 00:00:00
chromium - security update
2023-11-15 00:00:00
chromedriver-119.0.6045.159-1.1 on GA media
2024-06-15 00:00:00
freebsd
freebsd
chromium -- multiple security fixes
2023-11-14 00:00:00
electron{25,26} -- use after free in Garbage Collection
2023-11-22 00:00:00
debian
debian
[SECURITY] [DSA 5556-1] chromium security update
2023-11-15 23:11:21
redos
redos
ROS-20240329-06
2024-03-29 00:00:00
prion
prion
Design/Logic Flaw
2023-11-15 18:15:00
Design/Logic Flaw
2023-11-15 18:15:00
nvd
nvd
CVE-2023-5997
2023-11-15 18:15:06
CVE-2023-6112
2023-11-15 18:15:06
alpinelinux
alpinelinux
CVE-2023-5997
2023-11-15 18:15:06
CVE-2023-6112
2023-11-15 18:15:06
cvelist
cvelist
CVE-2023-5997
2023-11-15 17:19:43
CVE-2023-6112
2023-11-15 17:19:43
debiancve
debiancve
CVE-2023-5997
2023-11-15 18:15:06
CVE-2023-6112
2023-11-15 18:15:06
cve
cve
CVE-2023-5997
2023-11-15 18:15:06
CVE-2023-6112
2023-11-15 18:15:06
ubuntucve
ubuntucve
CVE-2023-5997
2023-11-15 00:00:00
CVE-2023-6112
2023-11-15 00:00:00
veracode
veracode
Use After Free
2023-11-27 21:53:58
Use After Free
2023-11-28 14:25:47
mscve
mscve
Chromium: CVE-2023-5997 Use after free in Garbage Collection
2023-11-16 17:35:21
Chromium: CVE-2023-6112 Use after free in Navigation
2023-11-16 17:35:26
mageia
mageia
Updated chromium-browser-stable packages fix bugs and vulnerabilities
2023-11-20 13:04:11
gentoo
gentoo
QtWebEngine: Multiple Vulnerabilities
2024-02-18 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-12-22 00:00:00
QtWebEngine: Multiple Vulnerabilities
2023-11-25 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.002
Percentile
55.4%
Related for OPENVAS:1361412562310885328