Headline
Debian Security Advisory 5456-1
Debian Linux Security Advisory 5456-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5456-1 [email protected]://www.debian.org/security/ Moritz MuehlenhoffJuly 20, 2023 https://www.debian.org/security/faq- -------------------------------------------------------------------------Package : chromiumCVE ID : CVE-2023-3727 CVE-2023-3728 CVE-2023-3730 CVE-2023-3732 CVE-2023-3733 CVE-2023-3734 CVE-2023-3735 CVE-2023-3736 CVE-2023-3737 CVE-2023-3738 CVE-2023-3740Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.For the oldstable distribution (bullseye), these problems have been fixedin version 115.0.5790.98-1~deb11u1.For the stable distribution (bookworm), these problems have been fixed inversion 115.0.5790.98-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: [email protected] PGP SIGNATURE-----iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmS5GUwACgkQEMKTtsN8TjbbTQ/+JTOxjogNUPA3QsV16IWwpWLkSoQkfVxKbreF8i5OC/FRN/nWdvH0gN8ZJI0f9UKhAjaSVAlQ9j4K7L54V4uEXuNWrnNtRDJx24RS6oZ5Wmd301IC0My1qpTRic3vd8Rfc7J9B1lvae9fNAmQlG11X090Pg3nxgaHNWF0qzh4HZcb97rp/TLBmuQLTjnB7jM9y/IBZxKQwoZXGERRWV5UGkp1YtJgNizZhlwkG6MpP6erSFrWOpMokEU44N0WWZKXoZr2xGkc7XIrAumJ5b5+1y+kjCBUVfrnNZl14T+LMz8k45CuDvfCq7FFfDhpS7z/Rrb0SsepBKwzSHB54nmexCLbtkycExwGQ2C5KLNtmjL435V2D65iaCsBdceMtqlGFsGgjZIY2wcYYdSh1lLGqKseoHKGrnSLpwAEuG/Lj+51IQFZ4n1erVCuBbObmWTySoU/cwWmryelWbo9ILiME2y2BwGTYiW1+VGndPBUwG9jgswaFf3Oo9VTSD/olDaD9CbtrnIHS/HrrCLtopDoYqLYcyrQzh++JV5pLkJQD7q90kApBKpw/iI2qVmlHCPUNjAK5AqYS/BDe6XC2rju0+dOyoZ8oSAhzusihLCHhbxYrjpNck8qy+7Zn4XvY5mWXQmfBpf+7o6s5S586Zhd9rsdtgMqBViRWUacSX82Q7I==Hx+R-----END PGP SIGNATURE-----Related news
Gentoo Linux Security Advisory 202401-34 - Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution. Versions greater than or equal to 120.0.6099.109 are affected.
Insufficient validation of untrusted input in Themes in Google Chrome prior to 115.0.5790.98 allowed a remote attacker to potentially serve malicious content to a user via a crafted background URL. (Chromium security severity: Low)
Plus: Mozilla fixes two high-severity bugs in Firefox, Citrix fixes a flaw that was used to attack a US-based critical infrastructure organization, and Oracle patches over 500 vulnerabilities.