Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2022-0480)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.1.10.2022.0480

Kategorie: Mageia Linux Local Security Checks

Titel: Mageia: Security Advisory (MGASA-2022-0480)

Zusammenfassung: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0480 advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0480 advisory.

Vulnerability Insight:
The chromium-browser-stable package has been updated to the 108.0.5359.124
release, fixing 8 vulnerabilities.

Some of the security fixes are ...

High CVE-2022-4436: Use after free in Blink Media. Reported by Anonymous
on 2022-11-15

High CVE-2022-4437: Use after free in Mojo IPC. Reported by
koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research
Institute on 2022-11-30

High CVE-2022-4438: Use after free in Blink Frames. Reported by Anonymous
on 2022-11-07

High CVE-2022-4439: Use after free in Aura. Reported by Anonymous on
2022-11-22

Medium CVE-2022-4440: Use after free in Profiles. Reported by Anonymous on
2022-11-09

Affected Software/OS:
'chromium-browser-stable' package(s) on Mageia 8.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2022-4436
https://security.gentoo.org/glsa/202305-10
https://security.gentoo.org/glsa/202311-11
https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html
https://crbug.com/1383991
Common Vulnerability Exposure (CVE) ID: CVE-2022-4437
https://crbug.com/1394692
Common Vulnerability Exposure (CVE) ID: CVE-2022-4438
https://crbug.com/1381871
Common Vulnerability Exposure (CVE) ID: CVE-2022-4439
https://crbug.com/1392661
Common Vulnerability Exposure (CVE) ID: CVE-2022-4440
https://crbug.com/1382761

Copyright Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2022.0480
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2022-0480)
Zusammenfassung:	The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0480 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0480 advisory. Vulnerability Insight: The chromium-browser-stable package has been updated to the 108.0.5359.124 release, fixing 8 vulnerabilities. Some of the security fixes are ... High CVE-2022-4436: Use after free in Blink Media. Reported by Anonymous on 2022-11-15 High CVE-2022-4437: Use after free in Mojo IPC. Reported by koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research Institute on 2022-11-30 High CVE-2022-4438: Use after free in Blink Frames. Reported by Anonymous on 2022-11-07 High CVE-2022-4439: Use after free in Aura. Reported by Anonymous on 2022-11-22 Medium CVE-2022-4440: Use after free in Profiles. Reported by Anonymous on 2022-11-09 Affected Software/OS: 'chromium-browser-stable' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2022-4436 https://security.gentoo.org/glsa/202305-10 https://security.gentoo.org/glsa/202311-11 https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop_13.html https://crbug.com/1383991 Common Vulnerability Exposure (CVE) ID: CVE-2022-4437 https://crbug.com/1394692 Common Vulnerability Exposure (CVE) ID: CVE-2022-4438 https://crbug.com/1381871 Common Vulnerability Exposure (CVE) ID: CVE-2022-4439 https://crbug.com/1392661 Common Vulnerability Exposure (CVE) ID: CVE-2022-4440 https://crbug.com/1382761
Copyright	Copyright (C) 2022 Greenbone AG