Debian Chromium vulnerabilities

CVE-2022-1866 [HIGH] CVE-2022-1866: chromium - Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.... Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions. Scope: local bookworm: resolved (fixed in 102.0.5005.61-1) bullseye: resolved (fixed in 102.0.5005.61-1~deb11u1) forky: resolved

CVE-2022-4180 [HIGH] CVE-2022-4180: chromium - Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed an attack... Use after free in Mojo in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky: resolv

CVE-2022-2007 [HIGH] CVE-2022-2007: chromium - Use after free in WebGPU in Google Chrome prior to 102.0.5005.115 allowed a remo... Use after free in WebGPU in Google Chrome prior to 102.0.5005.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 102.0.5005.115-1) bullseye: resolved (fixed in 102.0.5005.115-1~deb11u1) forky: resolved (fixed in 102.0.5005.115-1) sid: resolved (fixed in 102.0.5005.115-1) trixie: reso

CVE-2022-1633 [HIGH] CVE-2022-1633: chromium - Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.6... Use after free in Sharesheet in Google Chrome on Chrome OS prior to 101.0.4951.64 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via specific user interactions. Scope: local bookworm: resolved (fixed in 101.0.4951.64-1) bullseye: resolved (fixed in 101.0.4951.64-1~deb11u1) forky: resolved (f

CVE-2022-0605 [HIGH] CVE-2022-0605: chromium - Use after free in Webstore API in Google Chrome prior to 98.0.4758.102 allowed a... Use after free in Webstore API in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and convinced a user to enage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.102-1) bullseye: resolved (fixed in 98.0.4758.102

CVE-2022-2157 [HIGH] CVE-2022-2157: chromium - Use after free in Interest groups in Google Chrome prior to 103.0.5060.53 allowe... Use after free in Interest groups in Google Chrome prior to 103.0.5060.53 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 103.0.5060.53-1) bullseye: resolved (fixed in 103.0.5060.53-1~deb11u1) forky: resolved (fixed in 103.0.5060.53-1) sid: res

CVE-2022-2614 [HIGH] CVE-2022-2614: chromium - Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a... Use after free in Sign-In Flow in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 104.0.5112.79-1) bullseye: resolved (fixed in 104.0.5112.79-1~deb11u1) forky: resolved (fixed in 104.0.5112.79-1) sid: resolved (fixed in 104.0.5112.79-1) trixie: res

CVE-2022-1125 [HIGH] CVE-2022-1125: chromium - Use after free in Portals in Google Chrome prior to 100.0.4896.60 allowed a remo... Use after free in Portals in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via user interaction. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 100.0.4896.60-1)

CVE-2022-0796 [HIGH] CVE-2022-0796: chromium - Use after free in Media in Google Chrome prior to 99.0.4844.51 allowed a remote ... Use after free in Media in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 99.0.4844.51-1) bullseye: resolved (fixed in 99.0.4844.51-1~deb11u1) forky: resolved (fixed in 99.0.4844.51-1) sid: resolved (fixed in 99.0.4844.51-1) trixie: resolved (fixed

CVE-2022-0106 [HIGH] CVE-2022-0106: chromium - Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remo... Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.71-0.1) bullseye: resolved (fixed in 97.0.4692.71-0.1~deb11u1) forky: resolved (fixed in 97.0.4692.71-0.1)

CVE-2022-2743 [HIGH] CVE-2022-2743: chromium - Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prio... Integer overflow in Window Manager in Google Chrome on Chrome OS and Lacros prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific UI interactions to perform an out of bounds memory write via crafted UI interactions. (Chrome security severity: High) Scope: local bookworm: resolved (fixed in 104.0.5112.79-1) bullseye: resolved (fix

CVE-2022-1364 [HIGH] CVE-2022-1364: chromium - Type confusion in V8 Turbofan in Google Chrome prior to 100.0.4896.127 allowed a... Type confusion in V8 Turbofan in Google Chrome prior to 100.0.4896.127 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 100.0.4896.127-1) bullseye: resolved (fixed in 100.0.4896.127-1~deb11u1) forky: resolved (fixed in 100.0.4896.127-1) sid: resolved (fixed in 100.0.4896.127-1) trixie:

CVE-2022-1638 [HIGH] CVE-2022-1638: chromium - Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.... Heap buffer overflow in V8 Internationalization in Google Chrome prior to 101.0.4951.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.64-1) bullseye: resolved (fixed in 101.0.4951.64-1~deb11u1) forky: resolved (fixed in 101.0.4951.64-1) sid: resolved (fixed in 101.0.4951.

CVE-2022-1134 [HIGH] CVE-2022-1134: chromium - Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote at... Type confusion in V8 in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 100.0.4896.60-1) sid: resolved (fixed in 100.0.4896.60-1) trixie: resolved (fix

CVE-2022-0608 [HIGH] CVE-2022-0608: chromium - Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remot... Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.102-1) bullseye: resolved (fixed in 98.0.4758.102-1~deb11u1) forky: resolved (fixed in 98.0.4758.102-1) sid: resolved (fixed in 98.0.4758.102-1) trixie: resolved

CVE-2022-4191 [HIGH] CVE-2022-4191: chromium - Use after free in Sign-In in Google Chrome prior to 108.0.5359.71 allowed a remo... Use after free in Sign-In in Google Chrome prior to 108.0.5359.71 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via profile destruction. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 108.0.5359.71-1) bullseye: resolved (fixed in 108.0.5359.71-2~deb11u1) forky

CVE-2022-0306 [HIGH] CVE-2022-0306: chromium - Heap buffer overflow in PDFium in Google Chrome prior to 97.0.4692.99 allowed a ... Heap buffer overflow in PDFium in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: resolved (fixed in 97.0.4692.99-1) trixie: resolved

CVE-2022-1485 [HIGH] CVE-2022-1485: chromium - Use after free in File System API in Google Chrome prior to 101.0.4951.41 allowe... Use after free in File System API in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolved (fixed in 101.0.4951.41-1) trixie:

CVE-2022-2854 [HIGH] CVE-2022-2854: chromium - Use after free in SwiftShader in Google Chrome prior to 104.0.5112.101 allowed a... Use after free in SwiftShader in Google Chrome prior to 104.0.5112.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 104.0.5112.101-1) bullseye: resolved (fixed in 104.0.5112.101-1~deb11u1) forky: resolved (fixed in 104.0.5112.101-1) sid: resolved (fixed in 104.0.5112.101-1) trixie:

CVE-2022-3055 [HIGH] CVE-2022-3055: chromium - Use after free in Passwords in Google Chrome prior to 105.0.5195.52 allowed a re... Use after free in Passwords in Google Chrome prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved (fixed in 105.0.5195.52