885851 – (CVE-2022-4436, CVE-2022-4437, CVE-2022-4438, CVE-2022-4439, CVE-2022-4440) <www-client/chromium-108.0.5359.124 <www-client/google-chrome-108.0.5359.124 <www-client/chromium-bin-108.0.5359.124 <www-client/microsoft-edge-108.0.1462.54: Multiple vulnerabilities

Bug 885851 (CVE-2022-4436, CVE-2022-4437, CVE-2022-4438, CVE-2022-4439, CVE-2022-4440) - <www-client/chromium-108.0.5359.124 <www-client/google-chrome-108.0.5359.124 <www-client/chromium-bin-108.0.5359.124 <www-client/microsoft-edge-108.0.1462.54: Multiple vulnerabilities

Summary: <www-client/chromium-108.0.5359.124 <www-client/google-chrome-108.0.5359.124 ...

Status:	RESOLVED FIXED

Alias:	CVE-2022-4436, CVE-2022-4437, CVE-2022-4438, CVE-2022-4439, CVE-2022-4440

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	A2 [glsa+]
Keywords:

Depends on:	886175 888181 903544
Blocks:
	Show dependency tree

Reported:	2022-12-14 09:21 UTC by Sam James
Modified:	2023-05-03 09:58 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sam James archtester

2022-12-14 09:21:05 UTC

From https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html:

[$7000][1383991] High CVE-2022-4436: Use after free in Blink Media. Reported by Anonymous on 2022-11-15

[$6000][1394692] High CVE-2022-4437: Use after free in Mojo IPC. Reported by koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research Institute on 2022-11-30

[$1500][1381871] High CVE-2022-4438: Use after free in Blink Frames. Reported by Anonymous on 2022-11-07

[$TBD][1392661] High CVE-2022-4439: Use after free in Aura. Reported by Anonymous on 2022-11-22

[$3000][1382761] Medium CVE-2022-4440: Use after free in Profiles. Reported by Anonymous on 2022-11-09

Comment 1 Larry the Git Cow gentoo-dev

2022-12-15 04:00:38 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4b32df5d20c6bab3c3a2ff4bd21c1df05215997e

commit 4b32df5d20c6bab3c3a2ff4bd21c1df05215997e
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2022-12-15 03:18:03 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2022-12-15 03:43:25 +0000

    www-client/chromium: add 108.0.5359.124
    
    Bug: https://bugs.gentoo.org/885851
    Signed-off-by: Sam James <sam@gentoo.org>

 www-client/chromium/Manifest                       |    1 +
 www-client/chromium/chromium-108.0.5359.124.ebuild | 1229 ++++++++++++++++++++
 2 files changed, 1230 insertions(+)

Comment 2 John Helmert III archtester

2022-12-15 20:42:40 UTC

Still waiting on a fixed Edge, right?

Comment 3 Larry the Git Cow gentoo-dev

2022-12-17 19:31:56 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d946ab0370444ee110abb191ee2eaec3e734b594

commit d946ab0370444ee110abb191ee2eaec3e734b594
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2022-12-17 19:31:37 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2022-12-17 19:31:51 +0000

    www-client/chromium: drop 108.0.5359.98
    
    Bug: https://bugs.gentoo.org/885851
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                      |    1 -
 www-client/chromium/chromium-108.0.5359.98.ebuild | 1229 ---------------------
 2 files changed, 1230 deletions(-)

Comment 4 John Helmert III archtester

2023-01-25 20:26:36 UTC

GLSA request filed

Comment 5 Larry the Git Cow gentoo-dev

2023-05-03 09:54:28 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=3df173efb2982a5d08d6bff00cd84eb619e793cd

commit 3df173efb2982a5d08d6bff00cd84eb619e793cd
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2023-05-03 09:53:05 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2023-05-03 09:54:22 +0000

    [ GLSA 202305-10 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/876855
    Bug: https://bugs.gentoo.org/878825
    Bug: https://bugs.gentoo.org/883031
    Bug: https://bugs.gentoo.org/883697
    Bug: https://bugs.gentoo.org/885851
    Bug: https://bugs.gentoo.org/886479
    Bug: https://bugs.gentoo.org/890726
    Bug: https://bugs.gentoo.org/890728
    Bug: https://bugs.gentoo.org/891501
    Bug: https://bugs.gentoo.org/891503
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Sam James <sam@gentoo.org>

 glsa-202305-10.xml | 143 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 143 insertions(+)