MGASA-2023-0322 Updated chromium-browser-stable packages fix bugs and vulnerabilities

The chromium-browser-stable package has been updated to the 119.0.6045.159 release, fixing bugs and 15 vulnerabilities, together with 119.0.6045.123 and 119.0.6045.105; some of them are listed below: High CVE-2023-5480: Inappropriate implementation in Payments. Reported by Vsevolod Kokorin Slonse...

Fedora: Security Advisory for chromium (FEDORA-2023-f29e9560a1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

electron{25,26} -- use after free in WebAudio

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2023-5996...

Vulnerabilities fixed in Microsoft Edge

Microsoft has fixed vulnerabilities in Edge. A malicious person could exploit the vulnerabilities to impersonate another user, grant himself elevated privileges or execute arbitrary code execute arbitrary code in the context of the browser. Successful exploitation requires the malicious party to...

Fedora: Security Advisory (FEDORA-2023-f83b5e84d3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Chromium: CVE-2023-5996 Use after free in WebAudio

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

[SECURITY] [DSA 5551-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5551-1 [email protected] https://www.debian.org/security/ Andres Salomon November 09, 2023 https://www.debian.org/security/faq -...

Microsoft Edge (Chromium) < 118.0.2088.102 / 119.0.2151.58 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 118.0.2088.102 / 119.0.2151.58. It is, therefore, affected by multiple vulnerabilities as referenced in the November 9, 2023 advisory. - Microsoft Edge Chromium-based Remote Code Execution Vulnerability CVE-2023-36014 ...

Debian DSA-5551-1 : chromium - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5551 advisory. - Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromi...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-5996

CVE-2023-5996 affects Chromium/Google Chrome WebAudio, with a use-after-free in WebAudio prior to version 119.0.6045.123. An attacker could craft an HTML page to trigger heap corruption, potentially enabling remote code execution. The vulnerability is rated High severity (CVSS v3.1: 8.8, NETWORK/...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2023-5996

Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

Google Chrome < 119.0.6045.123 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 119.0.6045.123. It is, therefore, affected by a vulnerability as referenced in the 202311stable-channel-update-for-desktop advisory. - Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote...

Google Chrome < 119.0.6045.123 Vulnerability

The version of Google Chrome installed on the remote macOS host is prior to 119.0.6045.123. It is, therefore, affected by a vulnerability as referenced in the 202311stable-channel-update-for-desktop advisory. - Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote...

FreeBSD : chromium -- security update (77fc311d-7e62-11ee-8290-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 77fc311d-7e62-11ee-8290-a8a1599412c6 advisory. - Use after free in WebAudio. CVE-2023-5996 Note that Nessus has not tested for this issue but has...

KLA61888 DoS vulnerability in Google Chrome

Use after free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service, execute arbitrary code. Original advisories Chrome Releases: Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2023-5996 critical Solutio...