Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-4361 (GCVE-0-2023-4361)
Vulnerability from cvelistv5 – Published: 2023-08-15 17:07 – Updated: 2025-02-13 17:13
VLAI
EPSS
Summary
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)
Severity
No CVSS data available.
CWE
- Inappropriate implementation
Assigner
References
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:24:04.686Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://crbug.com/1465230"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5479"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202401-34"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Chrome",
"vendor": "Google",
"versions": [
{
"lessThan": "116.0.5845.96",
"status": "affected",
"version": "116.0.5845.96",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Inappropriate implementation",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-01-31T17:07:10.972Z",
"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"shortName": "Chrome"
},
"references": [
{
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"url": "https://crbug.com/1465230"
},
{
"url": "https://www.debian.org/security/2023/dsa-5479"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"url": "https://security.gentoo.org/glsa/202401-34"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"assignerShortName": "Chrome",
"cveId": "CVE-2023-4361",
"datePublished": "2023-08-15T17:07:13.235Z",
"dateReserved": "2023-08-15T00:03:27.074Z",
"dateUpdated": "2025-02-13T17:13:23.207Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-4361",
"date": "2026-05-28",
"epss": "0.00046",
"percentile": "0.14418"
},
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"116.0.5845.96\", \"matchCriteriaId\": \"40820217-BB18-474A-8520-109C1635D656\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA6FEEC2-9F11-4643-8827-749718254FED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"46D69DCC-AE4D-4EA5-861C-D60951444C6C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)\"}, {\"lang\": \"es\", \"value\": \"Una implementaci\\u00f3n inadecuada en Autofill en Google Chrome en Android anterior a 116.0.5845.96 permit\\u00eda a un atacante remoto saltarse las restricciones de Autofill a trav\\u00e9s de una p\\u00e1gina HTML elaborada. (Gravedad de seguridad de Chromium: Media)\\n\"}]",
"id": "CVE-2023-4361",
"lastModified": "2024-11-21T08:34:56.010",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"baseScore\": 5.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 1.4}]}",
"published": "2023-08-15T18:15:12.960",
"references": "[{\"url\": \"https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://crbug.com/1465230\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Permissions Required\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/\", \"source\": \"chrome-cve-admin@google.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202401-34\", \"source\": \"chrome-cve-admin@google.com\"}, {\"url\": \"https://www.debian.org/security/2023/dsa-5479\", \"source\": \"chrome-cve-admin@google.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Third Party Advisory\"]}, {\"url\": \"https://crbug.com/1465230\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Permissions Required\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202401-34\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.debian.org/security/2023/dsa-5479\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-4361\",\"sourceIdentifier\":\"chrome-cve-admin@google.com\",\"published\":\"2023-08-15T18:15:12.960\",\"lastModified\":\"2024-11-21T08:34:56.010\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)\"},{\"lang\":\"es\",\"value\":\"Una implementaci\u00f3n inadecuada en Autofill en Google Chrome en Android anterior a 116.0.5845.96 permit\u00eda a un atacante remoto saltarse las restricciones de Autofill a trav\u00e9s de una p\u00e1gina HTML elaborada. (Gravedad de seguridad de Chromium: Media)\\n\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"116.0.5845.96\",\"matchCriteriaId\":\"40820217-BB18-474A-8520-109C1635D656\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:google:android:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D69DCC-AE4D-4EA5-861C-D60951444C6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}]}]}],\"references\":[{\"url\":\"https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://crbug.com/1465230\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202401-34\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://www.debian.org/security/2023/dsa-5479\",\"source\":\"chrome-cve-admin@google.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://crbug.com/1465230\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Permissions Required\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202401-34\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2023/dsa-5479\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2023-AVI-0654
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Google Chrome. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Google Chrome versions ant\u00e9rieures \u00e0 116.0.5845.96/.97 (Windows)",
"product": {
"name": "Chrome",
"vendor": {
"name": "Google",
"scada": false
}
}
},
{
"description": "Google Chrome versions ant\u00e9rieures \u00e0 116.0.5845.96 (MacOS et Linux)",
"product": {
"name": "Chrome",
"vendor": {
"name": "Google",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4358"
},
{
"name": "CVE-2023-4351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4351"
},
{
"name": "CVE-2023-4364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4364"
},
{
"name": "CVE-2023-4362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4362"
},
{
"name": "CVE-2023-4359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4359"
},
{
"name": "CVE-2023-4354",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4354"
},
{
"name": "CVE-2023-4355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4355"
},
{
"name": "CVE-2023-4365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4365"
},
{
"name": "CVE-2023-4349",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4349"
},
{
"name": "CVE-2023-4361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4361"
},
{
"name": "CVE-2023-4363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4363"
},
{
"name": "CVE-2023-4353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4353"
},
{
"name": "CVE-2023-4350",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4350"
},
{
"name": "CVE-2023-4352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4352"
},
{
"name": "CVE-2023-4357",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4357"
},
{
"name": "CVE-2023-4360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4360"
},
{
"name": "CVE-2023-4356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4356"
},
{
"name": "CVE-2023-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2312"
},
{
"name": "CVE-2023-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4367"
},
{
"name": "CVE-2023-4368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4368"
},
{
"name": "CVE-2023-4366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4366"
}
],
"links": [],
"reference": "CERTFR-2023-AVI-0654",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-08-16T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eGoogle Chrome\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Chrome",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Chrome stable-channel-update-for-desktop_15 du 15 ao\u00fbt 2023",
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
}
]
}
CERTFR-2023-AVI-0672
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 116.0.1938.54",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4358"
},
{
"name": "CVE-2023-4351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4351"
},
{
"name": "CVE-2023-4364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4364"
},
{
"name": "CVE-2023-4362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4362"
},
{
"name": "CVE-2023-4359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4359"
},
{
"name": "CVE-2023-4354",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4354"
},
{
"name": "CVE-2023-4355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4355"
},
{
"name": "CVE-2023-4365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4365"
},
{
"name": "CVE-2023-4349",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4349"
},
{
"name": "CVE-2023-4361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4361"
},
{
"name": "CVE-2023-4363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4363"
},
{
"name": "CVE-2023-4353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4353"
},
{
"name": "CVE-2023-4350",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4350"
},
{
"name": "CVE-2023-4352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4352"
},
{
"name": "CVE-2023-4357",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4357"
},
{
"name": "CVE-2023-4360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4360"
},
{
"name": "CVE-2023-4356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4356"
},
{
"name": "CVE-2023-36787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36787"
},
{
"name": "CVE-2023-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2312"
},
{
"name": "CVE-2023-38158",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38158"
},
{
"name": "CVE-2023-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4367"
},
{
"name": "CVE-2023-4368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4368"
},
{
"name": "CVE-2023-4366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4366"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4366 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4367 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-36787 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36787"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4359 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4350 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4350"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4352 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4355 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-2312 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-2312"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4356 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4356"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4364 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4364"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4349 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4349"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4351 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4362 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4363 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4365 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4353 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4357 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4357"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4368 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4361 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4360 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4354 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4354"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4358 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-38158 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38158"
}
],
"reference": "CERTFR-2023-AVI-0672",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-08-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Edge\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
CERTFR-2023-AVI-0654
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Google Chrome. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Google Chrome versions ant\u00e9rieures \u00e0 116.0.5845.96/.97 (Windows)",
"product": {
"name": "Chrome",
"vendor": {
"name": "Google",
"scada": false
}
}
},
{
"description": "Google Chrome versions ant\u00e9rieures \u00e0 116.0.5845.96 (MacOS et Linux)",
"product": {
"name": "Chrome",
"vendor": {
"name": "Google",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4358"
},
{
"name": "CVE-2023-4351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4351"
},
{
"name": "CVE-2023-4364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4364"
},
{
"name": "CVE-2023-4362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4362"
},
{
"name": "CVE-2023-4359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4359"
},
{
"name": "CVE-2023-4354",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4354"
},
{
"name": "CVE-2023-4355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4355"
},
{
"name": "CVE-2023-4365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4365"
},
{
"name": "CVE-2023-4349",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4349"
},
{
"name": "CVE-2023-4361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4361"
},
{
"name": "CVE-2023-4363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4363"
},
{
"name": "CVE-2023-4353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4353"
},
{
"name": "CVE-2023-4350",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4350"
},
{
"name": "CVE-2023-4352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4352"
},
{
"name": "CVE-2023-4357",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4357"
},
{
"name": "CVE-2023-4360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4360"
},
{
"name": "CVE-2023-4356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4356"
},
{
"name": "CVE-2023-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2312"
},
{
"name": "CVE-2023-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4367"
},
{
"name": "CVE-2023-4368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4368"
},
{
"name": "CVE-2023-4366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4366"
}
],
"links": [],
"reference": "CERTFR-2023-AVI-0654",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-08-16T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans \u003cspan\nclass=\"textit\"\u003eGoogle Chrome\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Chrome",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Chrome stable-channel-update-for-desktop_15 du 15 ao\u00fbt 2023",
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
}
]
}
CERTFR-2023-AVI-0672
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été corrigées dans Microsoft Edge. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Microsoft Edge versions ant\u00e9rieures \u00e0 116.0.1938.54",
"product": {
"name": "Edge",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2023-4358",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4358"
},
{
"name": "CVE-2023-4351",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4351"
},
{
"name": "CVE-2023-4364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4364"
},
{
"name": "CVE-2023-4362",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4362"
},
{
"name": "CVE-2023-4359",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4359"
},
{
"name": "CVE-2023-4354",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4354"
},
{
"name": "CVE-2023-4355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4355"
},
{
"name": "CVE-2023-4365",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4365"
},
{
"name": "CVE-2023-4349",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4349"
},
{
"name": "CVE-2023-4361",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4361"
},
{
"name": "CVE-2023-4363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4363"
},
{
"name": "CVE-2023-4353",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4353"
},
{
"name": "CVE-2023-4350",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4350"
},
{
"name": "CVE-2023-4352",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4352"
},
{
"name": "CVE-2023-4357",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4357"
},
{
"name": "CVE-2023-4360",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4360"
},
{
"name": "CVE-2023-4356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4356"
},
{
"name": "CVE-2023-36787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36787"
},
{
"name": "CVE-2023-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2312"
},
{
"name": "CVE-2023-38158",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38158"
},
{
"name": "CVE-2023-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4367"
},
{
"name": "CVE-2023-4368",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4368"
},
{
"name": "CVE-2023-4366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4366"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4366 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4366"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4367 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4367"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-36787 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36787"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4359 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4359"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4350 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4350"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4352 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4352"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4355 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4355"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-2312 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-2312"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4356 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4356"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4364 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4364"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4349 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4349"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4351 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4351"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4362 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4362"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4363 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4363"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4365 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4365"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4353 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4353"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4357 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4357"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4368 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4368"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4361 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4361"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4360 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4360"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4354 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4354"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-4358 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4358"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-38158 du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38158"
}
],
"reference": "CERTFR-2023-AVI-0672",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-08-22T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eMicrosoft Edge\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Edge",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft du 21 ao\u00fbt 2023",
"url": "https://msrc.microsoft.com/update-guide/"
}
]
}
BDU:2023-04865
Vulnerability from fstec - Published: 15.08.2023
VLAI
Title
Уязвимость функции автозаполнения Autofill браузера Google Chrome для Android, позволяющая нарушителю обойти существующие ограничения безопасности
Description
Уязвимость функции автозаполнения Autofill браузера Google Chrome для Android связана с неправильно реализованной проверкой безопасности для стандартных элементов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, обойти существующие ограничения безопасности с помощью специально созданной HTML-страницы
Severity
Vendor
Google Inc, Сообщество свободного программного обеспечения, Fedora Project, АО "НППКТ", Camunda Services GmbH
Software Name
Android, Debian GNU/Linux, Fedora, Google Chrome, ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913), Camunda Modeler
Software Version
- (Android), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 38 (Fedora), до 116.0.5845.96 (Google Chrome), до 2.9 (ОСОН ОСнова Оnyx), 5.15.1 (Camunda Modeler)
Possible Mitigations
Установка обновлений из доверенных источников.
В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков.
Компенсирующие меры:
- использование средств антивирусной защиты с функцией контроля доступа к веб-ресурсам;
- контролируемый доступ в сеть Интернет – регламентация разрешенных сетевых ресурсов и соединений;
- запуск веб-браузера от имени пользователя с минимальными возможными привилегиями в операционной системе;
- использование альтернативных веб-браузеров;
- применение систем обнаружения и предотвращения вторжений.
Использование рекомендаций:
Для программных продуктов Google Inc.:
https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html
Для Fedora:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/
Для Debian GNU/Linux:
https://www.debian.org/security/2023/dsa-5479
Для ОСОН ОСнова Оnyx:
Обновление программного обеспечения chromium до версии 120.0.6099.109+repack-1~deb11u1.osnova1
Reference
https://www.debian.org/security/2023/dsa-5479
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/
https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html
https://crbug.com/1465230
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.9/
CWE
CWE-358
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Google Inc, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Fedora Project, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\", Camunda Services GmbH",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Android), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 38 (Fedora), \u0434\u043e 116.0.5845.96 (Google Chrome), \u0434\u043e 2.9 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), 5.15.1 (Camunda Modeler)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u0430\u043d\u0442\u0438\u0432\u0438\u0440\u0443\u0441\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b \u0441 \u0444\u0443\u043d\u043a\u0446\u0438\u0435\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0432\u0435\u0431-\u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c;\n- \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u0438\u0440\u0443\u0435\u043c\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u0432 \u0441\u0435\u0442\u044c \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442 \u2013 \u0440\u0435\u0433\u043b\u0430\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044f \u0440\u0430\u0437\u0440\u0435\u0448\u0435\u043d\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432 \u0438 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0439;\n- \u0437\u0430\u043f\u0443\u0441\u043a \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 \u043e\u0442 \u0438\u043c\u0435\u043d\u0438 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f \u0441 \u043c\u0438\u043d\u0438\u043c\u0430\u043b\u044c\u043d\u044b\u043c\u0438 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u043c\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u044f\u043c\u0438 \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0430\u043b\u044c\u0442\u0435\u0440\u043d\u0430\u0442\u0438\u0432\u043d\u044b\u0445 \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u043e\u0432;\n- \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Google Inc.:\nhttps://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\n\n\u0414\u043b\u044f Fedora:\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://www.debian.org/security/2023/dsa-5479\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f chromium \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 120.0.6099.109+repack-1~deb11u1.osnova1",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "15.08.2023",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "21.03.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.08.2023",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2023-04865",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2023-4361",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Android, Debian GNU/Linux, Fedora, Google Chrome, \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), Camunda Modeler",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Google Inc Android - , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , Fedora Project Fedora 38 , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.9 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f Autofill \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Google Chrome \u0434\u043b\u044f Android, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u0445 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u0432 (CWE-358)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0430\u0432\u0442\u043e\u0437\u0430\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f Autofill \u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Google Chrome \u0434\u043b\u044f Android \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u044b\u0445 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043e\u0431\u043e\u0439\u0442\u0438 \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0439 HTML-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0417\u043b\u043e\u0443\u043f\u043e\u0442\u0440\u0435\u0431\u043b\u0435\u043d\u0438\u0435 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0430\u043b\u043e\u043c",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.debian.org/security/2023/dsa-5479\nhttps://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/\nhttps://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html\nhttps://crbug.com/1465230\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.9/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-358",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,4)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}
FKIE_CVE-2023-4361
Vulnerability from fkie_nvd - Published: 2023-08-15 18:15 - Updated: 2024-11-21 08:34
Severity
Summary
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)
References
| URL | Tags | ||
|---|---|---|---|
| chrome-cve-admin@google.com | https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html | Release Notes, Third Party Advisory | |
| chrome-cve-admin@google.com | https://crbug.com/1465230 | Permissions Required | |
| chrome-cve-admin@google.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/ | ||
| chrome-cve-admin@google.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/ | Mailing List, Third Party Advisory | |
| chrome-cve-admin@google.com | https://security.gentoo.org/glsa/202401-34 | ||
| chrome-cve-admin@google.com | https://www.debian.org/security/2023/dsa-5479 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html | Release Notes, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://crbug.com/1465230 | Permissions Required | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/ | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/202401-34 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2023/dsa-5479 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| chrome | * | ||
| android | - | ||
| debian | debian_linux | 11.0 | |
| debian | debian_linux | 12.0 | |
| fedoraproject | fedora | 38 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "40820217-BB18-474A-8520-109C1635D656",
"versionEndExcluding": "116.0.5845.96",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
"matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)"
},
{
"lang": "es",
"value": "Una implementaci\u00f3n inadecuada en Autofill en Google Chrome en Android anterior a 116.0.5845.96 permit\u00eda a un atacante remoto saltarse las restricciones de Autofill a trav\u00e9s de una p\u00e1gina HTML elaborada. (Gravedad de seguridad de Chromium: Media)\n"
}
],
"id": "CVE-2023-4361",
"lastModified": "2024-11-21T08:34:56.010",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-08-15T18:15:12.960",
"references": [
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Permissions Required"
],
"url": "https://crbug.com/1465230"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://security.gentoo.org/glsa/202401-34"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5479"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Permissions Required"
],
"url": "https://crbug.com/1465230"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/202401-34"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5479"
}
],
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-543Q-PH8Q-RFFH
Vulnerability from github – Published: 2023-08-15 18:31 – Updated: 2024-01-31 18:31
VLAI
Details
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)
Severity
5.3 (Medium)
{
"affected": [],
"aliases": [
"CVE-2023-4361"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-08-15T18:15:12Z",
"severity": "MODERATE"
},
"details": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"id": "GHSA-543q-ph8q-rffh",
"modified": "2024-01-31T18:31:19Z",
"published": "2023-08-15T18:31:33Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4361"
},
{
"type": "WEB",
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"type": "WEB",
"url": "https://crbug.com/1465230"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202401-34"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2023/dsa-5479"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"type": "CVSS_V3"
}
]
}
GSD-2023-4361
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-4361",
"id": "GSD-2023-4361"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-4361"
],
"details": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"id": "GSD-2023-4361",
"modified": "2023-12-13T01:20:27.347744Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "chrome-cve-admin@google.com",
"ID": "CVE-2023-4361",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Chrome",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_name": "116.0.5845.96",
"version_value": "116.0.5845.96"
}
]
}
}
]
},
"vendor_name": "Google"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Inappropriate implementation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html",
"refsource": "MISC",
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"name": "https://crbug.com/1465230",
"refsource": "MISC",
"url": "https://crbug.com/1465230"
},
{
"name": "https://www.debian.org/security/2023/dsa-5479",
"refsource": "MISC",
"url": "https://www.debian.org/security/2023/dsa-5479"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/",
"refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"name": "https://security.gentoo.org/glsa/202401-34",
"refsource": "MISC",
"url": "https://security.gentoo.org/glsa/202401-34"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "40820217-BB18-474A-8520-109C1635D656",
"versionEndExcluding": "116.0.5845.96",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8B9FEC8-73B6-43B8-B24E-1F7C20D91D26",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "46D69DCC-AE4D-4EA5-861C-D60951444C6C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
"matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)"
}
],
"id": "CVE-2023-4361",
"lastModified": "2024-01-31T17:15:15.307",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-08-15T18:15:12.960",
"references": [
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Release Notes",
"Third Party Advisory"
],
"url": "https://chromereleases.googleblog.com/2023/08/stable-channel-update-for-desktop_15.html"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Permissions Required"
],
"url": "https://crbug.com/1465230"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2DMXHPRUGBUDNHZCZCIVMWAUIEXEGMGT/"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OCFEK63FUHFXZH5MSG6TNQOXMQWM4M5S/"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://security.gentoo.org/glsa/202401-34"
},
{
"source": "chrome-cve-admin@google.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5479"
}
],
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
OPENSUSE-SU-2023:0234-1
Vulnerability from csaf_opensuse - Published: 2023-08-21 09:53 - Updated: 2023-08-21 09:53Summary
Security update for chromium
Severity
Important
Notes
Title of the patch: Security update for chromium
Description of the patch: This update for chromium fixes the following issues:
Chromium 116.0.5845.96
* New CSS features: Motion Path, and 'display' and
'content-visibility' animations
* Web APIs: AbortSignal.any(), BYOB support for Fetch, Back/
forward cache NotRestoredReason API, Document Picture-in-
Picture, Expanded Wildcards in Permissions Policy Origins,
FedCM bundle: Login Hint API, User Info API, and RP Context API,
Non-composed Mouse and Pointer enter/leave events,
Remove document.open sandbox inheritance,
Report Critical-CH caused restart in NavigationTiming
This update fixes a number of security issues (boo#1214301):
* CVE-2023-2312: Use after free in Offline
* CVE-2023-4349: Use after free in Device Trust Connectors
* CVE-2023-4350: Inappropriate implementation in Fullscreen
* CVE-2023-4351: Use after free in Network
* CVE-2023-4352: Type Confusion in V8
* CVE-2023-4353: Heap buffer overflow in ANGLE
* CVE-2023-4354: Heap buffer overflow in Skia
* CVE-2023-4355: Out of bounds memory access in V8
* CVE-2023-4356: Use after free in Audio
* CVE-2023-4357: Insufficient validation of untrusted input in XML
* CVE-2023-4358: Use after free in DNS
* CVE-2023-4359: Inappropriate implementation in App Launcher
* CVE-2023-4360: Inappropriate implementation in Color
* CVE-2023-4361: Inappropriate implementation in Autofill
* CVE-2023-4362: Heap buffer overflow in Mojom IDL
* CVE-2023-4363: Inappropriate implementation in WebShare
* CVE-2023-4364: Inappropriate implementation in Permission Prompts
* CVE-2023-4365: Inappropriate implementation in Fullscreen
* CVE-2023-4366: Use after free in Extensions
* CVE-2023-4367: Insufficient policy enforcement in Extensions API
* CVE-2023-4368: Insufficient policy enforcement in Extensions API
- Fix crash with extensions (boo#1214003)
Patchnames: openSUSE-2023-234
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
69 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://bugzilla.suse.com/1214003 | self |
| https://bugzilla.suse.com/1214301 | self |
| https://www.suse.com/security/cve/CVE-2023-2312/ | self |
| https://www.suse.com/security/cve/CVE-2023-4349/ | self |
| https://www.suse.com/security/cve/CVE-2023-4350/ | self |
| https://www.suse.com/security/cve/CVE-2023-4351/ | self |
| https://www.suse.com/security/cve/CVE-2023-4352/ | self |
| https://www.suse.com/security/cve/CVE-2023-4353/ | self |
| https://www.suse.com/security/cve/CVE-2023-4354/ | self |
| https://www.suse.com/security/cve/CVE-2023-4355/ | self |
| https://www.suse.com/security/cve/CVE-2023-4356/ | self |
| https://www.suse.com/security/cve/CVE-2023-4357/ | self |
| https://www.suse.com/security/cve/CVE-2023-4358/ | self |
| https://www.suse.com/security/cve/CVE-2023-4359/ | self |
| https://www.suse.com/security/cve/CVE-2023-4360/ | self |
| https://www.suse.com/security/cve/CVE-2023-4361/ | self |
| https://www.suse.com/security/cve/CVE-2023-4362/ | self |
| https://www.suse.com/security/cve/CVE-2023-4363/ | self |
| https://www.suse.com/security/cve/CVE-2023-4364/ | self |
| https://www.suse.com/security/cve/CVE-2023-4365/ | self |
| https://www.suse.com/security/cve/CVE-2023-4366/ | self |
| https://www.suse.com/security/cve/CVE-2023-4367/ | self |
| https://www.suse.com/security/cve/CVE-2023-4368/ | self |
| https://www.suse.com/security/cve/CVE-2023-2312 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4349 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4350 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4351 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4352 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4353 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4354 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4355 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4356 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4357 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4358 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4359 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4360 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4361 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4362 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4363 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4364 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4365 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4366 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4367 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4368 | external |
| https://bugzilla.suse.com/1214301 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for chromium",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for chromium fixes the following issues:\n\nChromium 116.0.5845.96\n\n* New CSS features: Motion Path, and \u0027display\u0027 and\n \u0027content-visibility\u0027 animations\n* Web APIs: AbortSignal.any(), BYOB support for Fetch, Back/\n forward cache NotRestoredReason API, Document Picture-in-\n Picture, Expanded Wildcards in Permissions Policy Origins,\n FedCM bundle: Login Hint API, User Info API, and RP Context API,\n Non-composed Mouse and Pointer enter/leave events, \n Remove document.open sandbox inheritance, \n Report Critical-CH caused restart in NavigationTiming\n\nThis update fixes a number of security issues (boo#1214301):\n\n * CVE-2023-2312: Use after free in Offline\n * CVE-2023-4349: Use after free in Device Trust Connectors\n * CVE-2023-4350: Inappropriate implementation in Fullscreen\n * CVE-2023-4351: Use after free in Network\n * CVE-2023-4352: Type Confusion in V8\n * CVE-2023-4353: Heap buffer overflow in ANGLE\n * CVE-2023-4354: Heap buffer overflow in Skia\n * CVE-2023-4355: Out of bounds memory access in V8\n * CVE-2023-4356: Use after free in Audio\n * CVE-2023-4357: Insufficient validation of untrusted input in XML\n * CVE-2023-4358: Use after free in DNS\n * CVE-2023-4359: Inappropriate implementation in App Launcher\n * CVE-2023-4360: Inappropriate implementation in Color\n * CVE-2023-4361: Inappropriate implementation in Autofill\n * CVE-2023-4362: Heap buffer overflow in Mojom IDL\n * CVE-2023-4363: Inappropriate implementation in WebShare\n * CVE-2023-4364: Inappropriate implementation in Permission Prompts\n * CVE-2023-4365: Inappropriate implementation in Fullscreen\n * CVE-2023-4366: Use after free in Extensions\n * CVE-2023-4367: Insufficient policy enforcement in Extensions API\n * CVE-2023-4368: Insufficient policy enforcement in Extensions API\n\n- Fix crash with extensions (boo#1214003)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2023-234",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2023_0234-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2023:0234-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BHGOO7OFVF75LWZYDKQO5H6ZBGN5JVTX/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2023:0234-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BHGOO7OFVF75LWZYDKQO5H6ZBGN5JVTX/"
},
{
"category": "self",
"summary": "SUSE Bug 1214003",
"url": "https://bugzilla.suse.com/1214003"
},
{
"category": "self",
"summary": "SUSE Bug 1214301",
"url": "https://bugzilla.suse.com/1214301"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-2312 page",
"url": "https://www.suse.com/security/cve/CVE-2023-2312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4349 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4350 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4351 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4352 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4353 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4354 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4355 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4356 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4357 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4358 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4359 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4360 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4361 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4362 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4363 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4364 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4364/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4365 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4366 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4367 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4368 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4368/"
}
],
"title": "Security update for chromium",
"tracking": {
"current_release_date": "2023-08-21T09:53:00Z",
"generator": {
"date": "2023-08-21T09:53:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2023:0234-1",
"initial_release_date": "2023-08-21T09:53:00Z",
"revision_history": [
{
"date": "2023-08-21T09:53:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"product": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"product_id": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"product": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"product_id": "chromium-116.0.5845.96-bp155.2.19.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"product": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"product_id": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"product": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"product_id": "chromium-116.0.5845.96-bp155.2.19.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Package Hub 15 SP4",
"product": {
"name": "SUSE Package Hub 15 SP4",
"product_id": "SUSE Package Hub 15 SP4"
}
},
{
"category": "product_name",
"name": "SUSE Package Hub 15 SP5",
"product": {
"name": "SUSE Package Hub 15 SP5",
"product_id": "SUSE Package Hub 15 SP5"
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.4",
"product": {
"name": "openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 as component of SUSE Package Hub 15 SP4",
"product_id": "SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 as component of SUSE Package Hub 15 SP4",
"product_id": "SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64 as component of SUSE Package Hub 15 SP4",
"product_id": "SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64 as component of SUSE Package Hub 15 SP4",
"product_id": "SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 as component of SUSE Package Hub 15 SP5",
"product_id": "SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 as component of SUSE Package Hub 15 SP5",
"product_id": "SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64 as component of SUSE Package Hub 15 SP5",
"product_id": "SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64 as component of SUSE Package Hub 15 SP5",
"product_id": "SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64 as component of openSUSE Leap 15.4",
"product_id": "openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-116.0.5845.96-bp155.2.19.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
},
"product_reference": "chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-2312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-2312"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-2312",
"url": "https://www.suse.com/security/cve/CVE-2023-2312"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-2312",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-2312"
},
{
"cve": "CVE-2023-4349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4349"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Device Trust Connectors in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4349",
"url": "https://www.suse.com/security/cve/CVE-2023-4349"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4349",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4349"
},
{
"cve": "CVE-2023-4350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4350"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4350",
"url": "https://www.suse.com/security/cve/CVE-2023-4350"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4350",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4350"
},
{
"cve": "CVE-2023-4351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4351"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Network in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has elicited a browser shutdown to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4351",
"url": "https://www.suse.com/security/cve/CVE-2023-4351"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4351",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4351"
},
{
"cve": "CVE-2023-4352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4352"
}
],
"notes": [
{
"category": "general",
"text": "Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4352",
"url": "https://www.suse.com/security/cve/CVE-2023-4352"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4352",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4352"
},
{
"cve": "CVE-2023-4353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4353"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4353",
"url": "https://www.suse.com/security/cve/CVE-2023-4353"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4353",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4353"
},
{
"cve": "CVE-2023-4354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4354"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4354",
"url": "https://www.suse.com/security/cve/CVE-2023-4354"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4354",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4354"
},
{
"cve": "CVE-2023-4355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4355"
}
],
"notes": [
{
"category": "general",
"text": "Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4355",
"url": "https://www.suse.com/security/cve/CVE-2023-4355"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4355",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4355"
},
{
"cve": "CVE-2023-4356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4356"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4356",
"url": "https://www.suse.com/security/cve/CVE-2023-4356"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4356",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4356"
},
{
"cve": "CVE-2023-4357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4357"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4357",
"url": "https://www.suse.com/security/cve/CVE-2023-4357"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4357",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4357"
},
{
"cve": "CVE-2023-4358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4358"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4358",
"url": "https://www.suse.com/security/cve/CVE-2023-4358"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4358",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4358"
},
{
"cve": "CVE-2023-4359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4359"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96 allowed a remote attacker to potentially spoof elements of the security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4359",
"url": "https://www.suse.com/security/cve/CVE-2023-4359"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4359",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4359"
},
{
"cve": "CVE-2023-4360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4360"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Color in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4360",
"url": "https://www.suse.com/security/cve/CVE-2023-4360"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4360",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4360"
},
{
"cve": "CVE-2023-4361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4361"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4361",
"url": "https://www.suse.com/security/cve/CVE-2023-4361"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4361",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4361"
},
{
"cve": "CVE-2023-4362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4362"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4362",
"url": "https://www.suse.com/security/cve/CVE-2023-4362"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4362",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4362"
},
{
"cve": "CVE-2023-4363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4363"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in WebShare in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to spoof the contents of a dialog URL via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4363",
"url": "https://www.suse.com/security/cve/CVE-2023-4363"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4363",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4363"
},
{
"cve": "CVE-2023-4364",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4364"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4364",
"url": "https://www.suse.com/security/cve/CVE-2023-4364"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4364",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4364"
},
{
"cve": "CVE-2023-4365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4365"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Fullscreen in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4365",
"url": "https://www.suse.com/security/cve/CVE-2023-4365"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4365",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4365"
},
{
"cve": "CVE-2023-4366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4366"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4366",
"url": "https://www.suse.com/security/cve/CVE-2023-4366"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4366",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4366"
},
{
"cve": "CVE-2023-4367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4367"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4367",
"url": "https://www.suse.com/security/cve/CVE-2023-4367"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4367",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4367"
},
{
"cve": "CVE-2023-4368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4368"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4368",
"url": "https://www.suse.com/security/cve/CVE-2023-4368"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4368",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"SUSE Package Hub 15 SP5:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.4:chromium-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromedriver-116.0.5845.96-bp155.2.19.1.x86_64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.aarch64",
"openSUSE Leap 15.5:chromium-116.0.5845.96-bp155.2.19.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-08-21T09:53:00Z",
"details": "important"
}
],
"title": "CVE-2023-4368"
}
]
}
OPENSUSE-SU-2023:0251-1
Vulnerability from csaf_opensuse - Published: 2023-09-23 12:02 - Updated: 2023-09-23 12:02Summary
Security update for opera
Severity
Important
Notes
Title of the patch: Security update for opera
Description of the patch: This update for opera fixes the following issues:
- Update to 102.0.4880.40
* DNA-111203 Prepare translations for home button in settings
- Changes in 102.0.4880.38
* DNA-110720 [Sidebar] Sidebar app increase size every time
it's reopened
* DNA-110723 Music logo in light mode of 'Select service'
unreadable on hover
* DNA-110821 Run-if-alive callback missing in WMFDecoderImpl
* DNA-110835 Search/copy popup issues
* DNA-111038 Disable profile migration
* DNA-111263 Tab island animation incorrect when tabstrip full
- Update to 102.0.4880.33
* CHR-9411 Update Chromium on desktop-stable-116-4880 to
116.0.5845.141
* DNA-110172 [BUG] Images inside popup does not get rounded
corner
* DNA-110828 Update chess.com build
* DNA-110834 Crash at opera::component_based::
TabAnimationController::StartAnimatedLayout(opera::
component_based::TabAnimationController::AnimationInfo,
base::OnceCallback)
* DNA-111144 Enable a new version of the extension.
- The update to chromium 116.0.5845.141 fixes following issues:
CVE-2023-4572
- Update to 102.0.4880.29
* DNA-109498 Splash screen is shown on every restart of
the browser
* DNA-109698 Test Amazon Music support
* DNA-109840 Amazon music logo is very small and unreadable
* DNA-109841 Amazon music logo in player mode is too wide
* DNA-109842 [opauto] Add tests for Amazon Music in Player
* DNA-109937 Crash at opera::ComponentTabStripController::
SetGroupCollapsed(tab_groups::TabGroupId const&, bool)
* DNA-110107 Clicking roblox link on page closes the tab
* DNA-110110 [Tab strip][Tab island] Middle/right mouse click
on top of the screen have no/wrong efect
* DNA-110125 [Win/Lin] New design for default scrollbars on
web page
* DNA-110130 Capture mouse events on the 1-pixel edge to the
right of the web view
* DNA-110586 Shadow is clipped if first tab is selected
* DNA-110637 Revert removal of start page button
* DNA-110684 Add bookmarks permissions
* DNA-110702 [Scrollable] Pin group is not aligned with
address bar
* DNA-110737 [OMenu] Menu button looks weird
* DNA-110788 No 1-pixel edge in full screen mode
* DNA-110828 Update chess.com build
* DNA-110842 [Tab strip] Make ‘+’ button round(er) again
* DNA-110874 Bring back Home button
* DNA-110876 Search box on Start page without transparency
* DNA-110878 Turn on Amazon Music on developer
* DNA-110905 Amazon Music for all given locales
* DNA-110961 [WinLin] Remove 1-pixel edge in full screen mode
* DNA-111038 Disable profile migration
* DNA-111079 Improve user-profile migration
* DNA-111092 Disable profile migration flag for
desktop-stable-116-4880
- Update to 102.0.4880.16
* CHR-9396 Update Chromium on desktop-stable-116-4880 to
116.0.5845.97
* DNA-110040 Crash at crash_reporter::(anonymous namespace)::
AbslAbortHook(char const*, int, char const*, char const*,
char const*)
* DNA-110315 O-menu opening after pressing alt on site which
have action for Alt press
* DNA-110440 [Tab strip] Tab favicon not cropped when it does
not fit in tab size
* DNA-110469 Move Shopping corner and Loomi to
'Special Features' section
* DNA-110510 [Tab strip] Mute icon displayed over tab title
* DNA-110526 If group is first the tab bar is not aligned
with address bar
* DNA-110828 Update chess.com build
* DNA-110836 Promote 102 to stable
* DNA-110892 Translations for O102
* DNA-110962 Fix ab_tests.json preferences override not working
- The update to chromium 116.0.5845.97 fixes following issues:
CVE-2023-2312, CVE-2023-4349, CVE-2023-4350, CVE-2023-4351,
CVE-2023-4352, CVE-2023-4353, CVE-2023-4354, CVE-2023-4355,
CVE-2023-4356, CVE-2023-4357, CVE-2023-4358, CVE-2023-4359,
CVE-2023-4360, CVE-2023-4361, CVE-2023-4362, CVE-2023-4362,
CVE-2023-4363, CVE-2023-4364, CVE-2023-4365, CVE-2023-4366,
CVE-2023-4367, CVE-2023-4368
- Complete Opera 102 changelog at:
https://blogs.opera.com/desktop/changelog-for-102/
- Update to 101.0.4843.43
* CHR-9381 Update Chromium on desktop-stable-115-4843 to
115.0.5790.171
* DNA-108919 Tab Island 'Move To Island' highlight color is the
same as island color
* DNA-109202 Often extension popup is not displayed
* DNA-109454 Wallpaper customization with remote resource
* DNA-109679 Fix typo in flags schema
* DNA-109927 Add tooltips for visual or incomplete items in
context menu
* DNA-110225 Replace Twitter logo in Sidebar with the new one X
* DNA-110244 Translations for O101
* DNA-110276 Fix race condition in DeferredInstalledWallpapers
* DNA-110400 teaser_event_impression counted when user closes
baner
- The update to chromium 115.0.5790.171 fixes following issues:
CVE-2023-4068, CVE-2023-4069, CVE-2023-4070, CVE-2023-4071,
CVE-2023-4072, CVE-2023-4073, CVE-2023-4074, CVE-2023-4075,
CVE-2023-4076, CVE-2023-4077, CVE-2023-4078
- Update to 101.0.4843.23
* DNA-109400 Enable #adblocker-anticv on developer stream
* DNA-109423 Add histograms to help track
#platform-h264-decoder-in-gpu quality
* DNA-109861 Crash on expading folder on bookmark bar containing
unnamed subfolder
* DNA-109872 WMFAudioDecoder reports spurious dry run if
initialized during pipeline shutdown
* DNA-109908 Crash at opera::(anonymous namespace)::
AddNewTabToWorkspaceIfCurrent(Browser*, opera::WorkspaceId)
(.llvm.13400399341940007321)
* DNA-110005 Duplicated tabs indicator is not shown on tab bar
* DNA-110062 [Linux] QT6 dependency issue with .rpm package
* DNA-110210 Enable #adblocker-anticv on all streams
* DNA-110244 Translations for O101
- Update to 101.0.4843.25
* CHR-9357 Update Chromium on desktop-stable-115-4843 to
115.0.5790.90
* CHR-9362 Update Chromium on desktop-stable-115-4843 to
115.0.5790.102
* DNA-104841 Create a smooth corner background
* DNA-108012 [Opera One] Misaligned inner bookmarks menu
in Opera Menu
* DNA-109129 Crash at opera::component_based::
OperaOneIntroductionAnimationController::AnimateHideVisibility()
* DNA-109209 Dragged island falls under island its being
dragged over
* DNA-109266 Crash at content::WebContentsImpl::
SetDelegate(content::WebContentsDelegate*)
* DNA-109310 Broken session files are not automatically
recovered
* DNA-109448 [AdBlock] Images from ads are missing with AA
enabled
* DNA-109587 'Show bookmarks bar' checkbox on bookmarks
feature(Dark Mode)
* DNA-109674 Closing the tabs in the workspace in the other
window will close Opera
* DNA-109694 Smooth corners on active tab
* DNA-109774 Log when trying to switch workspace while
closing browser
* DNA-110005 Duplicated tabs indicator is not shown on tab bar
* DNA-110244 Translations for O101
- Complete Opera 101 changelog at:
https://blogs.opera.com/desktop/changelog-for-101/
- Update to 100.0.4815.76
* DNA-109129 Crash at opera::component_based::Opera
OneIntroductionAnimationController::AnimateHideVisibility()
* DNA-109233 Crash at crash_reporter::(anonymous namespace)::
AbslAbortHook(char const*, int, char const*, char const*,
char const*)
* DNA-109673 Session stat event teaser_tile_click is not sent
* DNA-109897 Session is lost when new session file is created
- Changes in 100.0.4815.54
* DNA-109148 Allow AI extension to change permissions during
update
* DNA-109172 WMFAudioDecoder fails with
#platform-aac-decoder-in-gpu enabled
* DNA-109633 Do not send TabStripEmpty multiple times
* DNA-109674 Closing the tabs in the workspace in the other
window will close Opera
* DNA-109774 Log when trying to switch workspace while
closing browser
- Changes in 100.0.4815.47
* DNA-108456 WMFAudioDecoder dry run should include decoding
one buffer
* DNA-108478 Disable extension icon on the right side
(where all normal extensions are)
* DNA-108791 Give access to feedbackPopupPrivate
* DNA-109134 Crash at media::FFmpegDemuxer::
OnFindStreamInfoDone(int) if LD_PRELOAD set by user
* DNA-109137 SD images/icons/logo not loading or loading
really slow
* DNA-109182 Please add an event when popup closes
* DNA-109231 Extended click area does not work for groups
* DNA-109242 Session unload kDisablePageLoadsOnStartup
not working
* DNA-109310 Broken session files are not automatically recovered
* DNA-109618 Crash logger RestartAction should be set only
after crash
- Update to 100.0.4815.30
* CHR-9339 Update Chromium on desktop-stable-114-4815 to
114.0.5735.199
* DNA-106986 [Tab strip][Tab islands] Reduce size of tab island
handle
* DNA-107205 Disable banner on fresh installation
'Back up your Opera Browser'
* DNA-107306 Update Contributors list Opera One
* DNA-107337 NotReached in Browser::CloseContents
* DNA-107673 Crash at static void
opera::ComponentTabStripController::ShowHoverCardForGroup()
* DNA-108461 Distribute Aria with the Opera build
* DNA-108540 [Rich Hints] Tab islands – a trigger and anchor
* DNA-108545 Track accelerated video decoding support
* DNA-108606 [Mac] Opening context menu closes subfolders menu
on bookmark bar
* DNA-108664 Set minimum and maximum width for Aria extension
* DNA-108702 Tab falls outside island with specific number of
tabs on tab strip
* DNA-108731 Add 'aria' stat to the schema
* DNA-108760 Record tab islands events
* DNA-108761 Implement ‘Later' functionality
* DNA-108763 Implement ‘Quit while showing onboarding'
* DNA-108806 Command Line not activated when sidebar panel
is opened
* DNA-108858 [Linux] Browser window corners are not rounded
perfectly
* DNA-108863 Sidebar panel isn't properly aligned with sidebar
* DNA-108882 [Icon change] Sync icon without custom image
* DNA-108898 [Autohide] Sidebar panel title bar is not tall
enough
* DNA-108906 Turn on #component-based-context-menu on all streams
* DNA-108907 Empty text (button inactive) button color is wrong
* DNA-108912 Implement rotating animation for Aria command line
* DNA-108921 Enable #opera-one-introduction on all streams
* DNA-108928 Show overlay only if command-line parameter was
given
* DNA-108933 Update repack script to handle introduction
extension
* DNA-108938 Translations for O100
* DNA-108942 Remove Shopping Corner from the sidebar by default
* DNA-108943 Crash at
opera::AriaCommandLineController::~AriaCommandLineController()
* DNA-108949 Make opera://intro display introduction page from
extension
* DNA-108952 Implement splash screen
* DNA-108955 Aria extension is moved to the right after sending
prompt from Command Line when sidebar is set to autohide
* DNA-108957 Opera crashes during shutdown after
opera-one-introduction hid
* DNA-108958 Commandline disappears after clicking Aria
logo on Commandline bar
* DNA-108959 Commandline does not have hover effect on Send
button
* DNA-108980 Add Control+Shift+7 / Command+Shift+7 as alternative
shortcut for Aria command line
* DNA-108992 Opera One introduction appears in every New Window
* DNA-109009 Crash at
opera::component_based::ComponentTabGroup::UpdateTabAppearances()
* DNA-109021 [Stable] No Shopping corner icon in sidebar setup
* DNA-109031 [Tab islands] Island can automatically re-collapse
when clicking handle button to expand it
* DNA-109036 [Private Mode] [Light Team] Icons in address bar
flashed white when pressed
* DNA-109037 [Private Mode][Light] Folders name are not
readable in BB when highlighted
* DNA-109085 Two separators after ‘Search with' option
* DNA-109091 Can't change tab when window is maximized on second
display
* DNA-109096 'Move to workspaces” doesn't fit all workspaces
* DNA-109099 [WinLin] Add Aria command line to Opera menu
* DNA-109102 [O-menu][History] Wrong layout of elements without
icon in history submenu
* DNA-109129 Crash at opera::component_based::OperaOneIntroduction
AnimationController::AnimateHideVisibility()
* DNA-109199 DCHECK when pinning tabs
* DNA-108893 Promote 100 to stable
- Complete Opera 100 changelog at:
https://blogs.opera.com/desktop/changelog-for-100/
- The update to chromium 114.0.5735.199 fixes following issues:
CVE-2023-3420, CVE-2023-3421, CVE-2023-3422
- Update to 99.0.4788.31
* DNA-107338 NotReached in SadTabView::OnPaint
* DNA-107689 Crash at extensions::
ShodanPrivateShowPopupForSelectedTextFunction::Run()
Patchnames: openSUSE-2023-251
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
112 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://lists.opensuse.org/archives/list/security… | self |
| https://www.suse.com/security/cve/CVE-2023-2312/ | self |
| https://www.suse.com/security/cve/CVE-2023-3420/ | self |
| https://www.suse.com/security/cve/CVE-2023-3421/ | self |
| https://www.suse.com/security/cve/CVE-2023-3422/ | self |
| https://www.suse.com/security/cve/CVE-2023-4068/ | self |
| https://www.suse.com/security/cve/CVE-2023-4069/ | self |
| https://www.suse.com/security/cve/CVE-2023-4070/ | self |
| https://www.suse.com/security/cve/CVE-2023-4071/ | self |
| https://www.suse.com/security/cve/CVE-2023-4072/ | self |
| https://www.suse.com/security/cve/CVE-2023-4073/ | self |
| https://www.suse.com/security/cve/CVE-2023-4074/ | self |
| https://www.suse.com/security/cve/CVE-2023-4075/ | self |
| https://www.suse.com/security/cve/CVE-2023-4076/ | self |
| https://www.suse.com/security/cve/CVE-2023-4077/ | self |
| https://www.suse.com/security/cve/CVE-2023-4078/ | self |
| https://www.suse.com/security/cve/CVE-2023-4349/ | self |
| https://www.suse.com/security/cve/CVE-2023-4350/ | self |
| https://www.suse.com/security/cve/CVE-2023-4351/ | self |
| https://www.suse.com/security/cve/CVE-2023-4352/ | self |
| https://www.suse.com/security/cve/CVE-2023-4353/ | self |
| https://www.suse.com/security/cve/CVE-2023-4354/ | self |
| https://www.suse.com/security/cve/CVE-2023-4355/ | self |
| https://www.suse.com/security/cve/CVE-2023-4356/ | self |
| https://www.suse.com/security/cve/CVE-2023-4357/ | self |
| https://www.suse.com/security/cve/CVE-2023-4358/ | self |
| https://www.suse.com/security/cve/CVE-2023-4359/ | self |
| https://www.suse.com/security/cve/CVE-2023-4360/ | self |
| https://www.suse.com/security/cve/CVE-2023-4361/ | self |
| https://www.suse.com/security/cve/CVE-2023-4362/ | self |
| https://www.suse.com/security/cve/CVE-2023-4363/ | self |
| https://www.suse.com/security/cve/CVE-2023-4364/ | self |
| https://www.suse.com/security/cve/CVE-2023-4365/ | self |
| https://www.suse.com/security/cve/CVE-2023-4366/ | self |
| https://www.suse.com/security/cve/CVE-2023-4367/ | self |
| https://www.suse.com/security/cve/CVE-2023-4368/ | self |
| https://www.suse.com/security/cve/CVE-2023-4572/ | self |
| https://www.suse.com/security/cve/CVE-2023-2312 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-3420 | external |
| https://bugzilla.suse.com/1212755 | external |
| https://www.suse.com/security/cve/CVE-2023-3421 | external |
| https://bugzilla.suse.com/1212755 | external |
| https://www.suse.com/security/cve/CVE-2023-3422 | external |
| https://bugzilla.suse.com/1212755 | external |
| https://www.suse.com/security/cve/CVE-2023-4068 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4069 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4070 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4071 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4072 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4073 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4074 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4075 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4076 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4077 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4078 | external |
| https://bugzilla.suse.com/1213920 | external |
| https://www.suse.com/security/cve/CVE-2023-4349 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4350 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4351 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4352 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4353 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4354 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4355 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4356 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4357 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4358 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4359 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4360 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4361 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4362 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4363 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4364 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4365 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4366 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4367 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4368 | external |
| https://bugzilla.suse.com/1214301 | external |
| https://www.suse.com/security/cve/CVE-2023-4572 | external |
| https://bugzilla.suse.com/1214758 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for opera",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for opera fixes the following issues:\n\n- Update to 102.0.4880.40\n\n * DNA-111203 Prepare translations for home button in settings\n\n- Changes in 102.0.4880.38\n\n * DNA-110720 [Sidebar] Sidebar app increase size every time\n it\u0027s reopened\n * DNA-110723 Music logo in light mode of \u0027Select service\u0027\n unreadable on hover\n * DNA-110821 Run-if-alive callback missing in WMFDecoderImpl\n * DNA-110835 Search/copy popup issues\n * DNA-111038 Disable profile migration\n * DNA-111263 Tab island animation incorrect when tabstrip full\n\n- Update to 102.0.4880.33\n\n * CHR-9411 Update Chromium on desktop-stable-116-4880 to\n 116.0.5845.141\n * DNA-110172 [BUG] Images inside popup does not get rounded\n corner\n * DNA-110828 Update chess.com build\n * DNA-110834 Crash at opera::component_based::\n TabAnimationController::StartAnimatedLayout(opera::\n component_based::TabAnimationController::AnimationInfo,\n base::OnceCallback)\n * DNA-111144 Enable a new version of the extension.\n\n- The update to chromium 116.0.5845.141 fixes following issues: \n CVE-2023-4572\n\n- Update to 102.0.4880.29\n\n * DNA-109498 Splash screen is shown on every restart of\n the browser\n * DNA-109698 Test Amazon Music support\n * DNA-109840 Amazon music logo is very small and unreadable\n * DNA-109841 Amazon music logo in player mode is too wide\n * DNA-109842 [opauto] Add tests for Amazon Music in Player\n * DNA-109937 Crash at opera::ComponentTabStripController::\n SetGroupCollapsed(tab_groups::TabGroupId const\u0026, bool)\n * DNA-110107 Clicking roblox link on page closes the tab\n * DNA-110110 [Tab strip][Tab island] Middle/right mouse click\n on top of the screen have no/wrong efect\n * DNA-110125 [Win/Lin] New design for default scrollbars on\n web page\n * DNA-110130 Capture mouse events on the 1-pixel edge to the\n right of the web view\n * DNA-110586 Shadow is clipped if first tab is selected\n * DNA-110637 Revert removal of start page button\n * DNA-110684 Add bookmarks permissions\n * DNA-110702 [Scrollable] Pin group is not aligned with\n address bar\n * DNA-110737 [OMenu] Menu button looks weird\n * DNA-110788 No 1-pixel edge in full screen mode\n * DNA-110828 Update chess.com build\n * DNA-110842 [Tab strip] Make \u2018+\u2019 button round(er) again\n * DNA-110874 Bring back Home button\n * DNA-110876 Search box on Start page without transparency\n * DNA-110878 Turn on Amazon Music on developer\n * DNA-110905 Amazon Music for all given locales\n * DNA-110961 [WinLin] Remove 1-pixel edge in full screen mode\n * DNA-111038 Disable profile migration\n * DNA-111079 Improve user-profile migration\n * DNA-111092 Disable profile migration flag for\n desktop-stable-116-4880\n\n- Update to 102.0.4880.16\n\n * CHR-9396 Update Chromium on desktop-stable-116-4880 to\n 116.0.5845.97\n * DNA-110040 Crash at crash_reporter::(anonymous namespace)::\n AbslAbortHook(char const*, int, char const*, char const*,\n char const*)\n * DNA-110315 O-menu opening after pressing alt on site which\n have action for Alt press\n * DNA-110440 [Tab strip] Tab favicon not cropped when it does\n not fit in tab size\n * DNA-110469 Move Shopping corner and Loomi to\n \u0027Special Features\u0027 section\n * DNA-110510 [Tab strip] Mute icon displayed over tab title\n * DNA-110526 If group is first the tab bar is not aligned\n with address bar\n * DNA-110828 Update chess.com build\n * DNA-110836 Promote 102 to stable\n * DNA-110892 Translations for O102\n * DNA-110962 Fix ab_tests.json preferences override not working\n\n- The update to chromium 116.0.5845.97 fixes following issues: \n CVE-2023-2312, CVE-2023-4349, CVE-2023-4350, CVE-2023-4351,\n CVE-2023-4352, CVE-2023-4353, CVE-2023-4354, CVE-2023-4355,\n CVE-2023-4356, CVE-2023-4357, CVE-2023-4358, CVE-2023-4359,\n CVE-2023-4360, CVE-2023-4361, CVE-2023-4362, CVE-2023-4362,\n CVE-2023-4363, CVE-2023-4364, CVE-2023-4365, CVE-2023-4366,\n CVE-2023-4367, CVE-2023-4368\n- Complete Opera 102 changelog at:\n https://blogs.opera.com/desktop/changelog-for-102/\n\n- Update to 101.0.4843.43\n\n * CHR-9381 Update Chromium on desktop-stable-115-4843 to\n 115.0.5790.171\n * DNA-108919 Tab Island \u0027Move To Island\u0027 highlight color is the\n same as island color\n * DNA-109202 Often extension popup is not displayed\n * DNA-109454 Wallpaper customization with remote resource\n * DNA-109679 Fix typo in flags schema\n * DNA-109927 Add tooltips for visual or incomplete items in\n context menu\n * DNA-110225 Replace Twitter logo in Sidebar with the new one X\n * DNA-110244 Translations for O101\n * DNA-110276 Fix race condition in DeferredInstalledWallpapers\n * DNA-110400 teaser_event_impression counted when user closes\n baner\n\n- The update to chromium 115.0.5790.171 fixes following issues: \n CVE-2023-4068, CVE-2023-4069, CVE-2023-4070, CVE-2023-4071,\n CVE-2023-4072, CVE-2023-4073, CVE-2023-4074, CVE-2023-4075,\n CVE-2023-4076, CVE-2023-4077, CVE-2023-4078\n\n- Update to 101.0.4843.23\n\n * DNA-109400 Enable #adblocker-anticv on developer stream\n * DNA-109423 Add histograms to help track \n #platform-h264-decoder-in-gpu quality\n * DNA-109861 Crash on expading folder on bookmark bar containing\n unnamed subfolder\n * DNA-109872 WMFAudioDecoder reports spurious dry run if\n initialized during pipeline shutdown\n * DNA-109908 Crash at opera::(anonymous namespace)::\n AddNewTabToWorkspaceIfCurrent(Browser*, opera::WorkspaceId)\n (.llvm.13400399341940007321)\n * DNA-110005 Duplicated tabs indicator is not shown on tab bar\n * DNA-110062 [Linux] QT6 dependency issue with .rpm package\n * DNA-110210 Enable #adblocker-anticv on all streams\n * DNA-110244 Translations for O101\n\n- Update to 101.0.4843.25\n\n * CHR-9357 Update Chromium on desktop-stable-115-4843 to\n 115.0.5790.90\n * CHR-9362 Update Chromium on desktop-stable-115-4843 to\n 115.0.5790.102\n * DNA-104841 Create a smooth corner background\n * DNA-108012 [Opera One] Misaligned inner bookmarks menu\n in Opera Menu\n * DNA-109129 Crash at opera::component_based::\n OperaOneIntroductionAnimationController::AnimateHideVisibility()\n * DNA-109209 Dragged island falls under island its being\n dragged over\n * DNA-109266 Crash at content::WebContentsImpl::\n SetDelegate(content::WebContentsDelegate*)\n * DNA-109310 Broken session files are not automatically\n recovered\n * DNA-109448 [AdBlock] Images from ads are missing with AA\n enabled\n * DNA-109587 \u0027Show bookmarks bar\u0027 checkbox on bookmarks\n feature(Dark Mode)\n * DNA-109674 Closing the tabs in the workspace in the other\n window will close Opera\n * DNA-109694 Smooth corners on active tab\n * DNA-109774 Log when trying to switch workspace while\n closing browser\n * DNA-110005 Duplicated tabs indicator is not shown on tab bar\n * DNA-110244 Translations for O101\n- Complete Opera 101 changelog at:\n https://blogs.opera.com/desktop/changelog-for-101/\n\n- Update to 100.0.4815.76\n\n * DNA-109129 Crash at opera::component_based::Opera\n OneIntroductionAnimationController::AnimateHideVisibility()\n * DNA-109233 Crash at crash_reporter::(anonymous namespace)::\n AbslAbortHook(char const*, int, char const*, char const*,\n char const*)\n * DNA-109673 Session stat event teaser_tile_click is not sent\n * DNA-109897 Session is lost when new session file is created\n\n- Changes in 100.0.4815.54\n\n * DNA-109148 Allow AI extension to change permissions during\n update\n * DNA-109172 WMFAudioDecoder fails with\n #platform-aac-decoder-in-gpu enabled\n * DNA-109633 Do not send TabStripEmpty multiple times\n * DNA-109674 Closing the tabs in the workspace in the other\n window will close Opera\n * DNA-109774 Log when trying to switch workspace while\n closing browser\n\n- Changes in 100.0.4815.47\n\n * DNA-108456 WMFAudioDecoder dry run should include decoding\n one buffer\n * DNA-108478 Disable extension icon on the right side\n (where all normal extensions are)\n * DNA-108791 Give access to feedbackPopupPrivate\n * DNA-109134 Crash at media::FFmpegDemuxer::\n OnFindStreamInfoDone(int) if LD_PRELOAD set by user\n * DNA-109137 SD images/icons/logo not loading or loading\n really slow\n * DNA-109182 Please add an event when popup closes\n * DNA-109231 Extended click area does not work for groups\n * DNA-109242 Session unload kDisablePageLoadsOnStartup\n not working\n * DNA-109310 Broken session files are not automatically recovered\n * DNA-109618 Crash logger RestartAction should be set only\n after crash\n \n\n- Update to 100.0.4815.30\n\n * CHR-9339 Update Chromium on desktop-stable-114-4815 to \n 114.0.5735.199\n * DNA-106986 [Tab strip][Tab islands] Reduce size of tab island\n handle\n * DNA-107205 Disable banner on fresh installation\n \u0027Back up your Opera Browser\u0027\n * DNA-107306 Update Contributors list Opera One\n * DNA-107337 NotReached in Browser::CloseContents\n * DNA-107673 Crash at static void \n opera::ComponentTabStripController::ShowHoverCardForGroup()\n * DNA-108461 Distribute Aria with the Opera build\n * DNA-108540 [Rich Hints] Tab islands \u2013 a trigger and anchor\n * DNA-108545 Track accelerated video decoding support\n * DNA-108606 [Mac] Opening context menu closes subfolders menu\n on bookmark bar\n * DNA-108664 Set minimum and maximum width for Aria extension\n * DNA-108702 Tab falls outside island with specific number of\n tabs on tab strip\n * DNA-108731 Add \u0027aria\u0027 stat to the schema\n * DNA-108760 Record tab islands events\n * DNA-108761 Implement \u2018Later\u0027 functionality\n * DNA-108763 Implement \u2018Quit while showing onboarding\u0027\n * DNA-108806 Command Line not activated when sidebar panel\n is opened\n * DNA-108858 [Linux] Browser window corners are not rounded\n perfectly\n * DNA-108863 Sidebar panel isn\u0027t properly aligned with sidebar\n * DNA-108882 [Icon change] Sync icon without custom image\n * DNA-108898 [Autohide] Sidebar panel title bar is not tall\n enough\n * DNA-108906 Turn on #component-based-context-menu on all streams\n * DNA-108907 Empty text (button inactive) button color is wrong\n * DNA-108912 Implement rotating animation for Aria command line\n * DNA-108921 Enable #opera-one-introduction on all streams\n * DNA-108928 Show overlay only if command-line parameter was\n given\n * DNA-108933 Update repack script to handle introduction\n extension\n * DNA-108938 Translations for O100\n * DNA-108942 Remove Shopping Corner from the sidebar by default\n * DNA-108943 Crash at \n opera::AriaCommandLineController::~AriaCommandLineController()\n * DNA-108949 Make opera://intro display introduction page from\n extension\n * DNA-108952 Implement splash screen\n * DNA-108955 Aria extension is moved to the right after sending\n prompt from Command Line when sidebar is set to autohide\n * DNA-108957 Opera crashes during shutdown after\n opera-one-introduction hid\n * DNA-108958 Commandline disappears after clicking Aria\n logo on Commandline bar\n * DNA-108959 Commandline does not have hover effect on Send\n button\n * DNA-108980 Add Control+Shift+7 / Command+Shift+7 as alternative\n shortcut for Aria command line\n * DNA-108992 Opera One introduction appears in every New Window\n * DNA-109009 Crash at\n opera::component_based::ComponentTabGroup::UpdateTabAppearances()\n * DNA-109021 [Stable] No Shopping corner icon in sidebar setup\n * DNA-109031 [Tab islands] Island can automatically re-collapse\n when clicking handle button to expand it\n * DNA-109036 [Private Mode] [Light Team] Icons in address bar\n flashed white when pressed\n * DNA-109037 [Private Mode][Light] Folders name are not\n readable in BB when highlighted\n * DNA-109085 Two separators after \u2018Search with\u0027 option\n * DNA-109091 Can\u0027t change tab when window is maximized on second\n display\n * DNA-109096 \u0027Move to workspaces\u201d doesn\u0027t fit all workspaces\n * DNA-109099 [WinLin] Add Aria command line to Opera menu\n * DNA-109102 [O-menu][History] Wrong layout of elements without\n icon in history submenu\n * DNA-109129 Crash at opera::component_based::OperaOneIntroduction\n AnimationController::AnimateHideVisibility()\n * DNA-109199 DCHECK when pinning tabs\n * DNA-108893 Promote 100 to stable\n- Complete Opera 100 changelog at:\n https://blogs.opera.com/desktop/changelog-for-100/\n- The update to chromium 114.0.5735.199 fixes following issues:\n CVE-2023-3420, CVE-2023-3421, CVE-2023-3422\n\n- Update to 99.0.4788.31\n\n * DNA-107338 NotReached in SadTabView::OnPaint\n * DNA-107689 Crash at extensions::\n ShodanPrivateShowPopupForSelectedTextFunction::Run()\n \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2023-251",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2023_0251-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2023:0251-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OZ42BLWF46DJIINWQUMWAD3MX5OLXGUI/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2023:0251-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OZ42BLWF46DJIINWQUMWAD3MX5OLXGUI/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-2312 page",
"url": "https://www.suse.com/security/cve/CVE-2023-2312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-3420 page",
"url": "https://www.suse.com/security/cve/CVE-2023-3420/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-3421 page",
"url": "https://www.suse.com/security/cve/CVE-2023-3421/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-3422 page",
"url": "https://www.suse.com/security/cve/CVE-2023-3422/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4068 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4068/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4069 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4070 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4070/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4071 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4071/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4072 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4072/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4073 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4074 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4075 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4075/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4076 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4077 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4078 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4349 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4350 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4351 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4352 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4353 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4354 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4355 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4356 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4357 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4358 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4359 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4360 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4361 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4362 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4363 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4364 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4364/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4365 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4365/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4366 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4366/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4367 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4367/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4368 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4368/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4572 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4572/"
}
],
"title": "Security update for opera",
"tracking": {
"current_release_date": "2023-09-23T12:02:01Z",
"generator": {
"date": "2023-09-23T12:02:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2023:0251-1",
"initial_release_date": "2023-09-23T12:02:01Z",
"revision_history": [
{
"date": "2023-09-23T12:02:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "opera-102.0.4880.40-lp154.2.50.1.x86_64",
"product": {
"name": "opera-102.0.4880.40-lp154.2.50.1.x86_64",
"product_id": "opera-102.0.4880.40-lp154.2.50.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.4 NonFree",
"product": {
"name": "openSUSE Leap 15.4 NonFree",
"product_id": "openSUSE Leap 15.4 NonFree",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "opera-102.0.4880.40-lp154.2.50.1.x86_64 as component of openSUSE Leap 15.4 NonFree",
"product_id": "openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
},
"product_reference": "opera-102.0.4880.40-lp154.2.50.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.4 NonFree"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-2312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-2312"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Offline in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-2312",
"url": "https://www.suse.com/security/cve/CVE-2023-2312"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-2312",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-2312"
},
{
"cve": "CVE-2023-3420",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-3420"
}
],
"notes": [
{
"category": "general",
"text": "Type Confusion in V8 in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-3420",
"url": "https://www.suse.com/security/cve/CVE-2023-3420"
},
{
"category": "external",
"summary": "SUSE Bug 1212755 for CVE-2023-3420",
"url": "https://bugzilla.suse.com/1212755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-3420"
},
{
"cve": "CVE-2023-3421",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-3421"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Media in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-3421",
"url": "https://www.suse.com/security/cve/CVE-2023-3421"
},
{
"category": "external",
"summary": "SUSE Bug 1212755 for CVE-2023-3421",
"url": "https://bugzilla.suse.com/1212755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-3421"
},
{
"cve": "CVE-2023-3422",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-3422"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Guest View in Google Chrome prior to 114.0.5735.198 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-3422",
"url": "https://www.suse.com/security/cve/CVE-2023-3422"
},
{
"category": "external",
"summary": "SUSE Bug 1212755 for CVE-2023-3422",
"url": "https://bugzilla.suse.com/1212755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-3422"
},
{
"cve": "CVE-2023-4068",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4068"
}
],
"notes": [
{
"category": "general",
"text": "Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4068",
"url": "https://www.suse.com/security/cve/CVE-2023-4068"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4068",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4068"
},
{
"cve": "CVE-2023-4069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4069"
}
],
"notes": [
{
"category": "general",
"text": "Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4069",
"url": "https://www.suse.com/security/cve/CVE-2023-4069"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4069",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4069"
},
{
"cve": "CVE-2023-4070",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4070"
}
],
"notes": [
{
"category": "general",
"text": "Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4070",
"url": "https://www.suse.com/security/cve/CVE-2023-4070"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4070",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4070"
},
{
"cve": "CVE-2023-4071",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4071"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Visuals in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4071",
"url": "https://www.suse.com/security/cve/CVE-2023-4071"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4071",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4071"
},
{
"cve": "CVE-2023-4072",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4072"
}
],
"notes": [
{
"category": "general",
"text": "Out of bounds read and write in WebGL in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4072",
"url": "https://www.suse.com/security/cve/CVE-2023-4072"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4072",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4072"
},
{
"cve": "CVE-2023-4073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4073"
}
],
"notes": [
{
"category": "general",
"text": "Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4073",
"url": "https://www.suse.com/security/cve/CVE-2023-4073"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4073",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4073"
},
{
"cve": "CVE-2023-4074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4074"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Blink Task Scheduling in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4074",
"url": "https://www.suse.com/security/cve/CVE-2023-4074"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4074",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4074"
},
{
"cve": "CVE-2023-4075",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4075"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4075",
"url": "https://www.suse.com/security/cve/CVE-2023-4075"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4075",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4075"
},
{
"cve": "CVE-2023-4076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4076"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in WebRTC in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4076",
"url": "https://www.suse.com/security/cve/CVE-2023-4076"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4076",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4076"
},
{
"cve": "CVE-2023-4077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4077"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient data validation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4077",
"url": "https://www.suse.com/security/cve/CVE-2023-4077"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4077",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4077"
},
{
"cve": "CVE-2023-4078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4078"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Extensions in Google Chrome prior to 115.0.5790.170 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4078",
"url": "https://www.suse.com/security/cve/CVE-2023-4078"
},
{
"category": "external",
"summary": "SUSE Bug 1213920 for CVE-2023-4078",
"url": "https://bugzilla.suse.com/1213920"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4078"
},
{
"cve": "CVE-2023-4349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4349"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Device Trust Connectors in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4349",
"url": "https://www.suse.com/security/cve/CVE-2023-4349"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4349",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4349"
},
{
"cve": "CVE-2023-4350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4350"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4350",
"url": "https://www.suse.com/security/cve/CVE-2023-4350"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4350",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4350"
},
{
"cve": "CVE-2023-4351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4351"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Network in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has elicited a browser shutdown to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4351",
"url": "https://www.suse.com/security/cve/CVE-2023-4351"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4351",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4351"
},
{
"cve": "CVE-2023-4352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4352"
}
],
"notes": [
{
"category": "general",
"text": "Type confusion in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4352",
"url": "https://www.suse.com/security/cve/CVE-2023-4352"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4352",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4352"
},
{
"cve": "CVE-2023-4353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4353"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in ANGLE in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4353",
"url": "https://www.suse.com/security/cve/CVE-2023-4353"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4353",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4353"
},
{
"cve": "CVE-2023-4354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4354"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Skia in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4354",
"url": "https://www.suse.com/security/cve/CVE-2023-4354"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4354",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4354"
},
{
"cve": "CVE-2023-4355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4355"
}
],
"notes": [
{
"category": "general",
"text": "Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4355",
"url": "https://www.suse.com/security/cve/CVE-2023-4355"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4355",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4355"
},
{
"cve": "CVE-2023-4356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4356"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Audio in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who has convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4356",
"url": "https://www.suse.com/security/cve/CVE-2023-4356"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4356",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4356"
},
{
"cve": "CVE-2023-4357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4357"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4357",
"url": "https://www.suse.com/security/cve/CVE-2023-4357"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4357",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4357"
},
{
"cve": "CVE-2023-4358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4358"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in DNS in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4358",
"url": "https://www.suse.com/security/cve/CVE-2023-4358"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4358",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4358"
},
{
"cve": "CVE-2023-4359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4359"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in App Launcher in Google Chrome on iOS prior to 116.0.5845.96 allowed a remote attacker to potentially spoof elements of the security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4359",
"url": "https://www.suse.com/security/cve/CVE-2023-4359"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4359",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4359"
},
{
"cve": "CVE-2023-4360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4360"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Color in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4360",
"url": "https://www.suse.com/security/cve/CVE-2023-4360"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4360",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4360"
},
{
"cve": "CVE-2023-4361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4361"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Autofill in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to bypass Autofill restrictions via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4361",
"url": "https://www.suse.com/security/cve/CVE-2023-4361"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4361",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4361"
},
{
"cve": "CVE-2023-4362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4362"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Mojom IDL in Google Chrome prior to 116.0.5845.96 allowed a remote attacker who had compromised the renderer process and gained control of a WebUI process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4362",
"url": "https://www.suse.com/security/cve/CVE-2023-4362"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4362",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4362"
},
{
"cve": "CVE-2023-4363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4363"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in WebShare in Google Chrome on Android prior to 116.0.5845.96 allowed a remote attacker to spoof the contents of a dialog URL via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4363",
"url": "https://www.suse.com/security/cve/CVE-2023-4363"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4363",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4363"
},
{
"cve": "CVE-2023-4364",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4364"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Permission Prompts in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4364",
"url": "https://www.suse.com/security/cve/CVE-2023-4364"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4364",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4364"
},
{
"cve": "CVE-2023-4365",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4365"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate implementation in Fullscreen in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to obfuscate security UI via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4365",
"url": "https://www.suse.com/security/cve/CVE-2023-4365"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4365",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4365"
},
{
"cve": "CVE-2023-4366",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4366"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in Extensions in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4366",
"url": "https://www.suse.com/security/cve/CVE-2023-4366"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4366",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4366"
},
{
"cve": "CVE-2023-4367",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4367"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4367",
"url": "https://www.suse.com/security/cve/CVE-2023-4367"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4367",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4367"
},
{
"cve": "CVE-2023-4368",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4368"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient policy enforcement in Extensions API in Google Chrome prior to 116.0.5845.96 allowed an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page. (Chromium security severity: Medium)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4368",
"url": "https://www.suse.com/security/cve/CVE-2023-4368"
},
{
"category": "external",
"summary": "SUSE Bug 1214301 for CVE-2023-4368",
"url": "https://bugzilla.suse.com/1214301"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4368"
},
{
"cve": "CVE-2023-4572",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4572"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in MediaStream in Google Chrome prior to 116.0.5845.140 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4572",
"url": "https://www.suse.com/security/cve/CVE-2023-4572"
},
{
"category": "external",
"summary": "SUSE Bug 1214758 for CVE-2023-4572",
"url": "https://bugzilla.suse.com/1214758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.4 NonFree:opera-102.0.4880.40-lp154.2.50.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-09-23T12:02:01Z",
"details": "important"
}
],
"title": "CVE-2023-4572"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…