Test ID:	1.3.6.1.4.1.25623.1.1.10.2023.0044
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2023-0044)
Summary:	The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2023-0044 advisory.
Description:	Summary: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2023-0044 advisory. Vulnerability Insight: The chromium-browser-stable package has been updated to the 109.0.5414.119 release, fixing 6 vulnerabilities. Some of the security fixes are: High CVE-2023-0471: Use after free in WebTransport. Reported by chichoo Kim(chichoo) and Cassidy Kim(@cassidy6564) on 2022-10-19 High CVE-2023-0472: Use after free in WebRTC. Reported by Cassidy Kim(@cassidy6564) on 2023-01-06 Medium CVE-2023-0473: Type Confusion in ServiceWorker API. Reported by raven at KunLun lab on 2023-01-03 Medium CVE-2023-0474: Use after free in GuestView. Reported by avaue at S.S.L on 2022-12-14 Affected Software/OS: 'chromium-browser-stable' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-0471 https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop_24.html https://crbug.com/1376354 Common Vulnerability Exposure (CVE) ID: CVE-2023-0472 https://crbug.com/1405256 Common Vulnerability Exposure (CVE) ID: CVE-2023-0473 https://crbug.com/1404639 Common Vulnerability Exposure (CVE) ID: CVE-2023-0474 https://crbug.com/1400841
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.