Fedora: Security Advisory (FEDORA-2024-aaff7345b8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 16 security bugs in Chromium: CVE-2024-9120: Use after free in Dawn CVE-2024-9122: Type Confusion in V8 CVE-2024-9123: Integer overflow in Skia CVE-2024-9369: Insufficient data validation in Mojo CVE-2024-9602: Type confusion in V8 CVE-2024-9603...

openSUSE 15 Security Update : chromium (openSUSE-SU-2024:0312-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0312-1 advisory. - Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in...

CVE-2024-9121

Mode C: Concrete details found. CVE-2024-9121 affects Chromium-based Chrome/Chromium. In Chromium’s V8, an inappropriate implementation allowed out-of-bounds memory access via a crafted HTML page, with a High impact (memory corruption/potential code execution). Public references indicate Chrome/C...

OPENSUSE-SU-2024:0312-1 Security update for chromium

This update for chromium fixes the following issues: - Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in V8 CVE-2024-8906: Incorrect security UI in Downloads CVE-2024-8907: Insufficient data validation i...

OPENSUSE-SU-2024:0311-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 129.0.6668.58 stable released 2024-09-17 boo1230678 CVE-2024-8904: Type Confusion in V8 CVE-2024-8905: Inappropriate implementation in V8 CVE-2024-8906: Incorrect security UI in Downloads CVE-2024-8907: Insufficient data validation in...

CVE-2024-7024

Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

CVE-2024-7019

Inappropriate implementation in UI in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. Chromium security severity: Medium...

CVE-2023-7282

Inappropriate implementation in Navigation in Google Chrome prior to 113.0.5672.63 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform domain spoofing via a crafted HTML page. Chromium security severity: Low...

qt5-webengine -- Multiple vulnerabilities

Backports for 15 security bugs in Chromium: CVE-2024-4761: Out of bounds write in V8 CVE-2024-5158: Type confusion in V8 CVE-2024-7532: Out of bounds memory access in ANGLE CVE-2024-7965: Inappropriate implementation in V8 CVE-2024-7967: Heap buffer overflow in Fonts CVE-2024-7971: Type confusion...

Google Chrome Security Update (stable-channel-update-for-desktop_17-2024-09) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

CVE-2024-8908

Inappropriate implementation in Autofill in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

Google Chrome < 129.0.6668.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 129.0.6668.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop17 advisory. - Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58...

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 129 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 129.0.6668.58 Linux 129.0.6668.58/.59 Windows, Mac contains a number of fixes and improvements -- a list of changes is...

Google Chrome < 129.0.6668.58 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 129.0.6668.58. It is, therefore, affected by multiple vulnerabilities as referenced in the 202409stable-channel-update-for-desktop17 advisory. - Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58...

KLA72043 DoS vulnerability in Opera

Inappropriate implementation vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Opera 113.0.5230.55 Stable update Related products Opera CVE list CVE-2024-7965 critical Solution Update to the latest version Download Ope...

Google Chromium V8 Inappropriate Implementation Vulnerability

Google Chromium V8 contains an inappropriate implementation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome,...

openSUSE 15 Security Update : chromium, gn, rust-bindgen (openSUSE-SU-2024:0254-2)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0254-2 advisory. - Chromium 127.0.6533.119 boo1228941 CVE-2024-7532: Out of bounds memory access in ANGLE CVE-2024-7533: Use after free in Sharing CVE-2024-7550:...

Chromium: CVE-2024-8033 Inappropriate implementation in WebApp Installs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

KLA71827 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate...