{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP4","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"119.0.6045.123-bp155.2.55.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP4","name":"gn","purl":"pkg:rpm/suse/gn&distro=SUSE%20Package%20Hub%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.20231023-bp155.5.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP5","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"119.0.6045.123-bp155.2.55.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP5","name":"gn","purl":"pkg:rpm/suse/gn&distro=SUSE%20Package%20Hub%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.20231023-bp155.5.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"chromium","purl":"pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"119.0.6045.123-bp155.2.55.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"gn","purl":"pkg:rpm/opensuse/gn&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.20231023-bp155.5.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.5","name":"chromium","purl":"pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"119.0.6045.123-bp155.2.55.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"119.0.6045.123-bp155.2.55.1","chromium":"119.0.6045.123-bp155.2.55.1","gn":"0.20231023-bp155.5.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.5","name":"gn","purl":"pkg:rpm/opensuse/gn&distro=openSUSE%20Leap%2015.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.20231023-bp155.5.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis update for chromium fixes the following issues:\n\nChromium 119.0.6045.123 (boo#1216978)\n\n* CVE-2023-5996: Use after free in WebAudio\n\nChromium 119.0.6045.105 (boo#1216783)\n\n* CVE-2023-5480: Inappropriate implementation in Payments\n* CVE-2023-5482: Insufficient data validation in USB\n* CVE-2023-5849: Integer overflow in USB\n* CVE-2023-5850: Incorrect security UI in Downloads\n* CVE-2023-5851: Inappropriate implementation in Downloads\n* CVE-2023-5852: Use after free in Printing\n* CVE-2023-5853: Incorrect security UI in Downloads\n* CVE-2023-5854: Use after free in Profiles\n* CVE-2023-5855: Use after free in Reading Mode\n* CVE-2023-5856: Use after free in Side Panel\n* CVE-2023-5857: Inappropriate implementation in Downloads\n* CVE-2023-5858: Inappropriate implementation in WebApp Provider\n* CVE-2023-5859: Incorrect security UI in Picture In Picture\n\n\ngn was updated to version 0.20231023:\n\n* many updates to support Chromium 119 build\n\n","id":"openSUSE-SU-2023:0368-1","modified":"2023-11-14T15:14:02Z","published":"2023-11-14T15:14:02Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KD6QFFZ2QOOLMG34Z7LCSOIITI7H7NZS/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216783"},{"type":"REPORT","url":"https://bugzilla.suse.com/1216978"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5480"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5482"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5849"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5850"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5851"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5852"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5853"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5854"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5855"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5856"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5857"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5858"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5859"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-5996"}],"related":["CVE-2023-5480","CVE-2023-5482","CVE-2023-5849","CVE-2023-5850","CVE-2023-5851","CVE-2023-5852","CVE-2023-5853","CVE-2023-5854","CVE-2023-5855","CVE-2023-5856","CVE-2023-5857","CVE-2023-5858","CVE-2023-5859","CVE-2023-5996"],"summary":"Security update for chromium","upstream":["CVE-2023-5480","CVE-2023-5482","CVE-2023-5849","CVE-2023-5850","CVE-2023-5851","CVE-2023-5852","CVE-2023-5853","CVE-2023-5854","CVE-2023-5855","CVE-2023-5856","CVE-2023-5857","CVE-2023-5858","CVE-2023-5859","CVE-2023-5996"]}