Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 872407 (CVE-2022-3195, CVE-2022-3196, CVE-2022-3197, CVE-2022-3198, CVE-2022-3199, CVE-2022-3200)

Summary: <www-client/chromium-105.0.5195.125 <www-client/chromium-bin-105.0.5195.125 <www-client/google-chrome-105.0.5195.125 <www-client/microsoft-edge-105.0.1343.42: Multiple vulnerabilities
Product: Gentoo Security Reporter: Stephan Hartmann (RETIRED) <sultan>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: chromium
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_14.html
See Also: https://bugs.gentoo.org/show_bug.cgi?id=866332
Whiteboard: A2 [glsa+]
Package list:
Runtime testing required: ---
Bug Depends on: 872413    
Bug Blocks: 873214    

Description Stephan Hartmann (RETIRED) gentoo-dev 2022-09-22 18:22:58 UTC
[1358381] High CVE-2022-3195: Out of bounds write in Storage. Reported by Ziling Chen and Nan Wang(@eternalsakura13) of 360 Vulnerability Research Institute on 2022-08-31

[1358090] High CVE-2022-3196: Use after free in PDF. Reported by triplepwns on 2022-08-30

[1358075] High CVE-2022-3197: Use after free in PDF. Reported by triplepwns on 2022-08-30

[1355682] High CVE-2022-3198: Use after free in PDF. Reported by MerdroidSG on 2022-08-23

[1355237] High CVE-2022-3199: Use after free in Frames. Reported by Anonymous on 2022-08-22

[1355103] High CVE-2022-3200: Heap buffer overflow in Internals. Reported by Richard Lorenz, SAP on 2022-08-22

[1343104] High CVE-2022-3201: Insufficient validation of untrusted input in DevTools. Reported by NDevTK on 2022-07-09
Comment 1 Larry the Git Cow gentoo-dev 2022-09-22 18:23:47 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bd5aac0e91dc8b7d0b993d3a8127e9251adcd037

commit bd5aac0e91dc8b7d0b993d3a8127e9251adcd037
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2022-09-22 18:20:04 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2022-09-22 18:23:42 +0000

    www-client/chromium: stable channel bump to 105.0.5195.125
    
    Bug: https://bugs.gentoo.org/872407
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                       |    1 +
 www-client/chromium/chromium-105.0.5195.125.ebuild | 1186 ++++++++++++++++++++
 2 files changed, 1187 insertions(+)
Comment 2 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-09-26 13:48:23 UTC
GLSA request filed
Comment 3 Larry the Git Cow gentoo-dev 2022-09-29 14:48:36 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=31ae708a90dd2ca9e628226aec8c4362dffb1794

commit 31ae708a90dd2ca9e628226aec8c4362dffb1794
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2022-09-29 14:24:25 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-09-29 14:48:01 +0000

    [ GLSA 202209-23 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/868156
    Bug: https://bugs.gentoo.org/868354
    Bug: https://bugs.gentoo.org/870142
    Bug: https://bugs.gentoo.org/872407
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 glsa-202209-23.xml | 112 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 112 insertions(+)
Comment 4 Larry the Git Cow gentoo-dev 2022-10-01 09:56:16 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d4e444fcb49cbf64b628a4111410af97cb84452d

commit d4e444fcb49cbf64b628a4111410af97cb84452d
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2022-10-01 09:56:04 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2022-10-01 09:56:04 +0000

    www-client/chromium: drop 105.0.5195.102
    
    Bug: https://bugs.gentoo.org/872407
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                       |    1 -
 www-client/chromium/chromium-105.0.5195.102.ebuild | 1186 --------------------
 2 files changed, 1187 deletions(-)
Comment 5 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-10-01 13:15:50 UTC
Thanks, all done!