Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 864723 (CVE-2022-33636, CVE-2022-33649, CVE-2022-35796)

Summary: <www-client/microsoft-edge-104.0.1293.47: multiple vulnerabilities
Product: Gentoo Security Reporter: John Helmert III <ajak>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: normal CC: chromium
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B2 [glsa+]
Package list:
Runtime testing required: ---
Bug Depends on: 863512    
Bug Blocks:    

Description John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-08-09 22:49:22 UTC
CVE-2022-35796 (

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability.

CVE-2022-33636 (

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability.

CVE-2022-33649 (

Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability.
Comment 1 Stephan Hartmann gentoo-dev 2022-08-17 09:02:25 UTC
Removing beta and dev because those are not security supported.
Comment 2 Larry the Git Cow gentoo-dev 2022-08-21 06:13:02 UTC
The bug has been referenced in the following commit(s):

commit cc821fda3ee186d2bcc82c6163599beb50f2302d
Author:     GLSAMaker <>
AuthorDate: 2022-08-21 06:11:41 +0000
Commit:     Sam James <>
CommitDate: 2022-08-21 06:12:55 +0000

    [ GLSA 202208-35 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
    Signed-off-by: GLSAMaker <>
    Signed-off-by: Sam James <>

 glsa-202208-35.xml | 126 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 126 insertions(+)
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2022-08-21 06:13:58 UTC
GLSA done, all done.