diff options
| author | Robert Nagy <rnagy@FreeBSD.org> | 2024-01-17 08:43:50 +0000 |
|---|---|---|
| committer | Robert Nagy <rnagy@FreeBSD.org> | 2024-01-17 08:44:32 +0000 |
| commit | 133e043913ccbcd489ad84eadbaeefce946dc4c5 (patch) | |
| tree | 61f9e64e54ddd970fbd658223ca989e6c54f1049 /security/vuxml | |
| parent | 432bf4d1b172a39f6cc1830b9d1f6bb0670f0cd4 (diff) | |
| download | ports-133e043913ccbcd489ad84eadbaeefce946dc4c5.tar.gz ports-133e043913ccbcd489ad84eadbaeefce946dc4c5.zip | |
security/vuxml: add www/*chromium < 120.0.6099.224
Obtained from: https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html
(cherry picked from commit 105eebecb78a6fcd68b0477fb8ec502a9df29ef2)
Diffstat (limited to 'security/vuxml')
| -rw-r--r-- | security/vuxml/vuln/2024.xml | 37 |
1 files changed, 37 insertions, 0 deletions
diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml index 4388731b07cc..92aa2366fbcf 100644 --- a/security/vuxml/vuln/2024.xml +++ b/security/vuxml/vuln/2024.xml @@ -1,3 +1,40 @@ + <vuln vid="1bc07be0-b514-11ee-86bb-a8a1599412c6"> + <topic>chromium -- multiple security fixes</topic> + <affects> + <package> + <name>chromium</name> + <range><lt>120.0.6099.224</lt></range> + </package> + <package> + <name>ungoogled-chromium</name> + <range><lt>120.0.6099.224</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Chrome Releases reports:</p> + <blockquote cite="https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html"> + <p>This update includes 4 security fixes:</p> + <ul> + <li>[1515930] High CVE-2024-0517: Out of bounds write in V8. Reported by Toan (suto) Pham of Qrious Secure on 2024-01-06</li> + <li>[1507412] High CVE-2024-0518: Type Confusion in V8. Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team on 2023-12-03</li> + <li>[1517354] High CVE-2024-0519: Out of bounds memory access in V8. Reported by Anonymous on 2024-01-11</li> + </ul> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2024-0517</cvename> + <cvename>CVE-2024-0518</cvename> + <cvename>CVE-2024-0519</cvename> + <url>https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html</url> + </references> + <dates> + <discovery>2024-01-16</discovery> + <entry>2024-01-17</entry> + </dates> + </vuln> + <vuln vid="7467c611-b490-11ee-b903-001fc69cd6dc"> <topic>xorg server -- Multiple vulnerabilities</topic> <affects> |