Debian Chromium vulnerabilities

CVE-2022-4193 [HIGH] CVE-2022-4193: chromium - Insufficient policy enforcement in File System API in Google Chrome prior to 108... Insufficient policy enforcement in File System API in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resolved (fixed in 108.0.5359.71-1)

CVE-2022-4190 [HIGH] CVE-2022-4190: chromium - Insufficient data validation in Directory in Google Chrome prior to 108.0.5359.7... Insufficient data validation in Directory in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resolved (fixed in 108.0.5359.71-1) sid: res

CVE-2022-2163 [HIGH] CVE-2022-2163: chromium - Use after free in Cast UI and Toolbar in Google Chrome prior to 103.0.5060.134 a... Use after free in Cast UI and Toolbar in Google Chrome prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via UI interaction. Scope: local bookworm: resolved (fixed in 103.0.5060.53-1) bullseye: resolved (fixed in 103.0.5060.134-1~deb11u1) forky: resolved (fixed in 103.0.5060.53-1)

CVE-2022-3842 [HIGH] CVE-2022-3842: chromium - Use after free in Passwords in Google Chrome prior to 105.0.5195.125 allowed a r... Use after free in Passwords in Google Chrome prior to 105.0.5195.125 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 105.0.5195.125-1) bullseye: resolved (fixed in 105.0.5195.125-1~deb11u1) forky: resolved (fi

CVE-2022-1142 [HIGH] CVE-2022-1142: chromium - Heap buffer overflow in WebUI in Google Chrome prior to 100.0.4896.60 allowed a ... Heap buffer overflow in WebUI in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific input into DevTools. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 1

CVE-2022-3654 [HIGH] CVE-2022-3654: chromium - Use after free in Layout in Google Chrome prior to 107.0.5304.62 allowed a remot... Use after free in Layout in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 107.0.5304.68-1) bullseye: resolved (fixed in 107.0.5304.68-1~deb11u1) forky: resolved (fixed in 107.0.5304.68-1) sid: resolved (fixed in

CVE-2022-3049 [HIGH] CVE-2022-3049: chromium - Use after free in SplitScreen in Google Chrome on Chrome OS, Lacros prior to 105... Use after free in SplitScreen in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved

CVE-2022-0978 [HIGH] CVE-2022-0978: chromium - Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote ... Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 99.0.4844.74-1) bullseye: resolved (fixed in 99.0.4844.74-1~deb11u1) forky: resolved (fixed in 99.0.4844.74-1) sid: resolved (fixed in 99.0.4844.74-1) trixie: resolved (fixed

CVE-2022-0975 [HIGH] CVE-2022-0975: chromium - Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote ... Use after free in ANGLE in Google Chrome prior to 99.0.4844.74 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 99.0.4844.74-1) bullseye: resolved (fixed in 99.0.4844.74-1~deb11u1) forky: resolved (fixed in 99.0.4844.74-1) sid: resolved (fixed in 99.0.4844.74-1) trixie: resolved (fixed

CVE-2022-3041 [HIGH] CVE-2022-3041: chromium - Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remot... Use after free in WebSQL in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved (fixed in 105.0.5195.52-1) sid: resolved (fixed in 105.0.5195.52-1) trixie: resolved

CVE-2022-3448 [HIGH] CVE-2022-3448: chromium - Use after free in Permissions API in Google Chrome prior to 106.0.5249.119 allow... Use after free in Permissions API in Google Chrome prior to 106.0.5249.119 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 106.0.5249.119-1) bullseye: resolved (fixed in 106.0.5249.119-1~deb11u1)

CVE-2022-2478 [HIGH] CVE-2022-2478: chromium - Use after free in PDF in Google Chrome prior to 103.0.5060.134 allowed a remote ... Use after free in PDF in Google Chrome prior to 103.0.5060.134 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 103.0.5060.134-1) bullseye: resolved (fixed in 103.0.5060.134-1~deb11u1) forky: resolved (fixed in 103.0.5060.134-1) sid: resolved (fixed in 103.0.5060.134-1) trixie: resolve

CVE-2022-2008 [HIGH] CVE-2022-2008: chromium - Double free in WebGL in Google Chrome prior to 102.0.5005.115 allowed a remote a... Double free in WebGL in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 102.0.5005.115-1) bullseye: resolved (fixed in 102.0.5005.115-1~deb11u1) forky: resolved (fixed in 102.0.5005.115-1) sid: resolved (fixed in 102.0.5005.115-1) trixie: resolved

CVE-2022-4179 [HIGH] CVE-2022-4179: chromium - Use after free in Audio in Google Chrome prior to 108.0.5359.71 allowed an attac... Use after free in Audio in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resol

CVE-2022-2294 [HIGH] CVE-2022-2294: chromium - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed ... Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 103.0.5060.114-1) bullseye: resolved (fixed in 103.0.5060.114-1~deb11u1) forky: resolved (fixed in 103.0.5060.114-1) sid: resolved (fixed in 103.0.5060.114-1) trixie

CVE-2022-0460 [HIGH] CVE-2022-0460: chromium - Use after free in Window Dialogue in Google Chrome prior to 98.0.4758.80 allowed... Use after free in Window Dialogue in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.80-1) bullseye: resolved (fixed in 98.0.4758.80-1~deb11u1) forky: resolved (fixed in 98.0.4758.80-1) sid: resolved (fixed in 98.0.4758.80-1) trixie: resol

CVE-2022-4436 [HIGH] CVE-2022-4436: chromium - Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a... Use after free in Blink Media in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 108.0.5359.124-1) bullseye: resolved (fixed in 108.0.5359.124-1~deb11u1) forky: resolved (fixed in 108.0.5359.124-1) sid: resolved

CVE-2022-0297 [HIGH] CVE-2022-0297: chromium - Use after free in Vulkan in Google Chrome prior to 97.0.4692.99 allowed a remote... Use after free in Vulkan in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: resolved (fixed in 97.0.4692.99-1) trixie: resolved (fixe

CVE-2022-1856 [HIGH] CVE-2022-1856: chromium - Use after free in User Education in Google Chrome prior to 102.0.5005.61 allowed... Use after free in User Education in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension or specific user interaction. Scope: local bookworm: resolved (fixed in 102.0.5005.61-1) bullseye: resolved (fixed in 102.0.5005.61-1~deb11u1) forky: re

CVE-2022-1478 [HIGH] CVE-2022-1478: chromium - Use after free in SwiftShader in Google Chrome prior to 101.0.4951.41 allowed a ... Use after free in SwiftShader in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed in 101.0.4951.41-1) trixie: reso