[1358381] High CVE-2022-3195: Out of bounds write in Storage. Reported by Ziling Chen and Nan Wang(@eternalsakura13) of 360 Vulnerability Research Institute on 2022-08-31 [1358090] High CVE-2022-3196: Use after free in PDF. Reported by triplepwns on 2022-08-30 [1358075] High CVE-2022-3197: Use after free in PDF. Reported by triplepwns on 2022-08-30 [1355682] High CVE-2022-3198: Use after free in PDF. Reported by MerdroidSG on 2022-08-23 [1355237] High CVE-2022-3199: Use after free in Frames. Reported by Anonymous on 2022-08-22 [1355103] High CVE-2022-3200: Heap buffer overflow in Internals. Reported by Richard Lorenz, SAP on 2022-08-22 [1343104] High CVE-2022-3201: Insufficient validation of untrusted input in DevTools. Reported by NDevTK on 2022-07-09
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bd5aac0e91dc8b7d0b993d3a8127e9251adcd037 commit bd5aac0e91dc8b7d0b993d3a8127e9251adcd037 Author: Stephan Hartmann <sultan@gentoo.org> AuthorDate: 2022-09-22 18:20:04 +0000 Commit: Stephan Hartmann <sultan@gentoo.org> CommitDate: 2022-09-22 18:23:42 +0000 www-client/chromium: stable channel bump to 105.0.5195.125 Bug: https://bugs.gentoo.org/872407 Signed-off-by: Stephan Hartmann <sultan@gentoo.org> www-client/chromium/Manifest | 1 + www-client/chromium/chromium-105.0.5195.125.ebuild | 1186 ++++++++++++++++++++ 2 files changed, 1187 insertions(+)
GLSA request filed
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=31ae708a90dd2ca9e628226aec8c4362dffb1794 commit 31ae708a90dd2ca9e628226aec8c4362dffb1794 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-09-29 14:24:25 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-09-29 14:48:01 +0000 [ GLSA 202209-23 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/868156 Bug: https://bugs.gentoo.org/868354 Bug: https://bugs.gentoo.org/870142 Bug: https://bugs.gentoo.org/872407 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202209-23.xml | 112 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 112 insertions(+)
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d4e444fcb49cbf64b628a4111410af97cb84452d commit d4e444fcb49cbf64b628a4111410af97cb84452d Author: Stephan Hartmann <sultan@gentoo.org> AuthorDate: 2022-10-01 09:56:04 +0000 Commit: Stephan Hartmann <sultan@gentoo.org> CommitDate: 2022-10-01 09:56:04 +0000 www-client/chromium: drop 105.0.5195.102 Bug: https://bugs.gentoo.org/872407 Signed-off-by: Stephan Hartmann <sultan@gentoo.org> www-client/chromium/Manifest | 1 - www-client/chromium/chromium-105.0.5195.102.ebuild | 1186 -------------------- 2 files changed, 1187 deletions(-)
Thanks, all done!
