Headline
Debian Security Advisory 5577-1
Debian Linux Security Advisory 5577-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256- -------------------------------------------------------------------------Debian Security Advisory DSA-5577-1 [email protected]://www.debian.org/security/ Andres SalomonDecember 13, 2023 https://www.debian.org/security/faq- -------------------------------------------------------------------------Package : chromiumCVE ID : CVE-2023-6702 CVE-2023-6703 CVE-2023-6704 CVE-2023-6705 CVE-2023-6706 CVE-2023-6707Multiple security issues were discovered in Chromium, which could resultin the execution of arbitrary code, denial of service or informationdisclosure.For the oldstable distribution (bullseye), these problems have been fixedin version 120.0.6099.109-1~deb11u1.For the stable distribution (bookworm), these problems have been fixed inversion 120.0.6099.109-1~deb12u1.We recommend that you upgrade your chromium packages.For the detailed security status of chromium please refer toits security tracker page at:https://security-tracker.debian.org/tracker/chromiumFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: [email protected] PGP SIGNATURE-----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kzAk-----END PGP SIGNATURE-----Related news
Gentoo Linux Security Advisory 202401-34 - Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution. Versions greater than or equal to 120.0.6099.109 are affected.
Plus: Apple shuts down a Flipper Zero Attack, Microsoft patches more than 30 vulnerabilities, and more critical updates for the last month of 2023.
Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)