English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.10.2022.0357
Category:Mageia Linux Local Security Checks
Title:Mageia: Security Advisory (MGASA-2022-0357)
Summary:The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0357 advisory.
Description:Summary:
The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2022-0357 advisory.

Vulnerability Insight:
The chromium-browser-stable package has been updated to the new 106 branch
with the 106.0.5249.61 version, fixing many bugs and 20 vulnerabilities,
it brings as well some improvements.

Some of the security fixes are:

High CVE-2022-3304: Use after free in CSS.
High CVE-2022-3201: Insufficient validation of untrusted input in
Developer Tools. Reported by NDevTK on 2022-07-09
High CVE-2022-3305: Use after free in Survey. Reported by Nan
Wang(@eternalsakura13) and Guang Gong of 360 Vulnerability Research
Institute on 2022-04-24
High CVE-2022-3306: Use after free in Survey. Reported by Nan
Wang(@eternalsakura13) and Guang Gong of 360 Vulnerability
Research Institute on 2022-04-27
High CVE-2022-3307: Use after free in Media. Reported by Anonymous
Telecommunications Corp. Ltd. on 2022-05-08
Medium CVE-2022-3308: Insufficient policy enforcement in Developer Tools.
Reported by Andrea Cappa (zi0Black) @ Shielder on 2022-07-08
Medium CVE-2022-3309: Use after free in Assistant. Reported by zh1x1an1221
of Ant Group Tianqiong Security Lab on 2022-07-29
Medium CVE-2022-3310: Insufficient policy enforcement in Custom Tabs.
Reported by Ashwin Agrawal from Optus, Sydney on 2021-08-16
Medium CVE-2022-3311: Use after free in Import. Reported by Samet Bekmezci
@sametbekmezci on 2022-03-04
Medium CVE-2022-3312: Insufficient validation of untrusted input in VPN.
Reported by Andr.Ess on 2022-03-06
Medium CVE-2022-3313: Incorrect security UI in Full Screen. Reported by
Irvan Kurniawan (sourc7) on 2022-04-20
Medium CVE-2022-3314: Use after free in Logging. Reported by Anonymous on
2022-05-24
Medium CVE-2022-3315: Type confusion in Blink. Reported by Anonymous on
2022-05-05
Low CVE-2022-3316: Insufficient validation of untrusted input in Safe
Browsing. Reported by Sven Dysthe (@svn_dy) on 2022-06-07
Low CVE-2022-3317: Insufficient validation of untrusted input in Intents.
Reported by Hafiizh on 2022-02-24
Low CVE-2022-3318: Use after free in ChromeOS Notifications. Reported by
GraVity0 on 2022-04-22

Affected Software/OS:
'chromium-browser-stable' package(s) on Mageia 8.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2022-3201
https://security.gentoo.org/glsa/202311-11
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_14.html
https://crbug.com/1343104
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/
https://security.gentoo.org/glsa/202209-23
https://security.gentoo.org/glsa/202210-16
https://www.debian.org/security/2022/dsa-5244
Common Vulnerability Exposure (CVE) ID: CVE-2022-3304
https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
https://crbug.com/1358907
Common Vulnerability Exposure (CVE) ID: CVE-2022-3305
https://crbug.com/1319229
Common Vulnerability Exposure (CVE) ID: CVE-2022-3306
https://crbug.com/1320139
Common Vulnerability Exposure (CVE) ID: CVE-2022-3307
https://crbug.com/1323488
Common Vulnerability Exposure (CVE) ID: CVE-2022-3308
https://crbug.com/1342722
Common Vulnerability Exposure (CVE) ID: CVE-2022-3309
https://crbug.com/1348415
Common Vulnerability Exposure (CVE) ID: CVE-2022-3310
https://crbug.com/1240065
Common Vulnerability Exposure (CVE) ID: CVE-2022-3311
https://crbug.com/1302813
Common Vulnerability Exposure (CVE) ID: CVE-2022-3312
https://crbug.com/1303306
Common Vulnerability Exposure (CVE) ID: CVE-2022-3313
https://crbug.com/1317904
Common Vulnerability Exposure (CVE) ID: CVE-2022-3314
https://crbug.com/1328708
Common Vulnerability Exposure (CVE) ID: CVE-2022-3315
https://crbug.com/1322812
Common Vulnerability Exposure (CVE) ID: CVE-2022-3316
https://crbug.com/1333623
Common Vulnerability Exposure (CVE) ID: CVE-2022-3317
https://crbug.com/1300539
Common Vulnerability Exposure (CVE) ID: CVE-2022-3318
https://crbug.com/1318791
CopyrightCopyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.