Debian Chromium vulnerabilities

CVE-2022-4907 [HIGH] CVE-2022-4907: chromium - Uninitialized Use in FFmpeg in Google Chrome prior to 108.0.5359.71 allowed a re... Uninitialized Use in FFmpeg in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resolved (fixed in 108.0.5359.71-1) sid: resolved

CVE-2022-0453 [HIGH] CVE-2022-0453: chromium - Use after free in Reader Mode in Google Chrome prior to 98.0.4758.80 allowed a r... Use after free in Reader Mode in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.80-1) bullseye: resolved (fixed in 98.0.4758.80-1~deb11u1) forky: resolved (fixed in 98.0.4758.80-1) sid: resolved (f

CVE-2022-4262 [HIGH] CVE-2022-4262: chromium - Type confusion in V8 in Google Chrome prior to 108.0.5359.94 allowed a remote at... Type confusion in V8 in Google Chrome prior to 108.0.5359.94 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 108.0.5359.94-1) bullseye: resolved (fixed in 108.0.5359.94-1~deb11u1) forky: resolved (fixed in 108.0.5359.94-1) sid: resolved (fixed in 108

CVE-2022-0293 [HIGH] CVE-2022-0293: chromium - Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a... Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: resolved (fixed in 97.0.4692.99-1) trixie: resolve

CVE-2022-1479 [HIGH] CVE-2022-1479: chromium - Use after free in ANGLE in Google Chrome prior to 101.0.4951.41 allowed a remote... Use after free in ANGLE in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed in 101.0.4951.41-1) trixie: resolved (

CVE-2022-3051 [HIGH] CVE-2022-3051: chromium - Heap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros prior to... Heap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: r

CVE-2022-1493 [HIGH] CVE-2022-1493: chromium - Use after free in Dev Tools in Google Chrome prior to 101.0.4951.41 allowed a re... Use after free in Dev Tools in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via specific and direct user interaction. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed in 101.0.4951.41-

CVE-2022-0301 [HIGH] CVE-2022-0301: chromium - Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed ... Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: r

CVE-2022-1486 [HIGH] CVE-2022-1486: chromium - Type confusion in V8 in Google Chrome prior to 101.0.4951.41 allowed a remote at... Type confusion in V8 in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed in 101.0.4951.41

CVE-2022-0979 [HIGH] CVE-2022-0979: chromium - Use after free in Safe Browsing in Google Chrome on Android prior to 99.0.4844.7... Use after free in Safe Browsing in Google Chrome on Android prior to 99.0.4844.74 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 99.0.4844.74-1) bullseye: resolved (fixed in 99.0.4844.74-1~deb11u1) forky: resolved (fixed in

CVE-2022-3040 [HIGH] CVE-2022-3040: chromium - Use after free in Layout in Google Chrome prior to 105.0.5195.52 allowed a remot... Use after free in Layout in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved (fixed in 105.0.5195.52-1) sid: resolved (fixed in 105.0.5195.52-1) trixie: resolved

CVE-2022-4919 [HIGH] CVE-2022-4919: chromium - Use after free in Base Internals in Google Chrome prior to 101.0.4951.41 allowed... Use after free in Base Internals in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed i

CVE-2022-2852 [HIGH] CVE-2022-2852: chromium - Use after free in FedCM in Google Chrome prior to 104.0.5112.101 allowed a remot... Use after free in FedCM in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 104.0.5112.101-1) bullseye: resolved (fixed in 104.0.5112.101-1~deb11u1) forky: resolved (fixed in 104.0.5112.101-1) sid: resolved (fixed in 104.0.5112.101-1) trixie: resol

CVE-2022-1136 [HIGH] CVE-2022-1136: chromium - Use after free in Tab Strip in Google Chrome prior to 100.0.4896.60 allowed an a... Use after free in Tab Strip in Google Chrome prior to 100.0.4896.60 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific set of user gestures. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 100.0.4896.60-

CVE-2022-4175 [HIGH] CVE-2022-4175: chromium - Use after free in Camera Capture in Google Chrome prior to 108.0.5359.71 allowed... Use after free in Camera Capture in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resolved (fixed in 108.0.5359.71-1) sid: resolved (

CVE-2022-3373 [HIGH] CVE-2022-3373: chromium - Out of bounds write in V8 in Google Chrome prior to 106.0.5249.91 allowed a remo... Out of bounds write in V8 in Google Chrome prior to 106.0.5249.91 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 106.0.5249.91-1) bullseye: resolved (fixed in 106.0.5249.91-1~deb11u1) forky: resolved (fixed in 106.0.5249.91-1) sid: resolved (fixed

CVE-2022-0458 [HIGH] CVE-2022-0458: chromium - Use after free in Thumbnail Tab Strip in Google Chrome prior to 98.0.4758.80 all... Use after free in Thumbnail Tab Strip in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.80-1) bullseye: resolved (fixed in 98.0.4758.80-1~deb11u1) forky: resolved (fixed in 98.0.4758.80-1) sid: resolved (fixed in 98.0.4758.80-1) trixie: r

CVE-2022-3043 [HIGH] CVE-2022-3043: chromium - Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 10... Heap buffer overflow in Screen Capture in Google Chrome on Chrome OS prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved

CVE-2022-3071 [HIGH] CVE-2022-3071: chromium - Use after free in Tab Strip in Google Chrome on Chrome OS, Lacros prior to 105.0... Use after free in Tab Strip in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interaction. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved

CVE-2022-1145 [HIGH] CVE-2022-1145: chromium - Use after free in Extensions in Google Chrome prior to 100.0.4896.60 allowed an ... Use after free in Extensions in Google Chrome prior to 100.0.4896.60 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via specific user interaction and profile destruction. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fi