VuXML: chromium -- multiple vulnerabilities

Affected packages

chromium

107.0.5304.110

ungoogled-chromium

107.0.5304.110

Details

VuXML ID	6b04476f-601c-11ed-92ce-3065ec8fd3ec
Discovery	2022-11-08
Entry	2022-11-09

VuXML ID

6b04476f-601c-11ed-92ce-3065ec8fd3ec

Discovery

2022-11-08

Entry

2022-11-09

Chrome Releases reports:

This release contains 10 security fixes, including:

[1377816] High CVE-2022-3885: Use after free in V8. Reported by gzobqq@ on 2022-10-24

[1372999] High CVE-2022-3886: Use after free in Speech Recognition. Reported by anonymous on 2022-10-10

[1372695] High CVE-2022-3887: Use after free in Web Workers. Reported by anonymous on 2022-10-08

[1375059] High CVE-2022-3888: Use after free in WebCodecs. Reported by Peter Nemeth on 2022-10-16

[1380063] High CVE-2022-3889: Type Confusion in V8. Reported by anonymous on 2022-11-01

[1380083] High CVE-2022-3890: Heap buffer overflow in Crashpad. Reported by anonymous on 2022-11-01

[source]

References

CVE Name

CVE-2022-3885

CVE Name

CVE-2022-3886

CVE Name

CVE-2022-3887

CVE Name

CVE-2022-3888

CVE Name

CVE-2022-3889

CVE Name

CVE-2022-3890

URL

https://chromereleases.googleblog.com/2022/11/stable-channel-update-for-desktop.html