Debian Chromium vulnerabilities

CVE-2022-0098 [HIGH] CVE-2022-0098: chromium - Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.469... Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gestures. Scope: local bookworm: resolved (fixed in 97.0.4692.71-0.1) bullseye: resolved (fixed in 97.0.4692.71-0.1~deb11u1) forky: resolved (fixed in 9

CVE-2022-1131 [HIGH] CVE-2022-1131: chromium - Use after free in Cast UI in Google Chrome prior to 100.0.4896.60 allowed a remo... Use after free in Cast UI in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 100.0.4896.60-1) sid: resolved (fixed in 100.0.4896.60-1) trixie: resolved

CVE-2022-1143 [HIGH] CVE-2022-1143: chromium - Heap buffer overflow in WebUI in Google Chrome prior to 100.0.4896.60 allowed a ... Heap buffer overflow in WebUI in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific input into DevTools. Scope: local bookworm: resolved (fixed in 100.0.4896.60-1) bullseye: resolved (fixed in 100.0.4896.60-1~deb11u1) forky: resolved (fixed in 1

CVE-2022-1490 [HIGH] CVE-2022-1490: chromium - Use after free in Browser Switcher in Google Chrome prior to 101.0.4951.41 allow... Use after free in Browser Switcher in Google Chrome prior to 101.0.4951.41 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0

CVE-2022-1483 [HIGH] CVE-2022-1483: chromium - Heap buffer overflow in WebGPU in Google Chrome prior to 101.0.4951.41 allowed a... Heap buffer overflow in WebGPU in Google Chrome prior to 101.0.4951.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 101.0.4951.41-1) bullseye: resolved (fixed in 101.0.4951.41-1~deb11u1) forky: resolved (fixed in 101.0.4951.41-1) sid: resolv

CVE-2022-3723 [HIGH] CVE-2022-3723: chromium - Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote at... Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) Scope: local bookworm: resolved (fixed in 107.0.5304.87-1) bullseye: resolved (fixed in 107.0.5304.87-1~deb11u1) forky: resolved (fixed in 107.0.5304.87-1) sid: resolved (fixed in 107

CVE-2022-3656 [HIGH] CVE-2022-3656: chromium - Insufficient data validation in File System in Google Chrome prior to 107.0.5304... Insufficient data validation in File System in Google Chrome prior to 107.0.5304.62 allowed a remote attacker to bypass file system restrictions via a crafted HTML page. (Chromium security severity: Medium) Scope: local bookworm: resolved (fixed in 107.0.5304.68-1) bullseye: resolved (fixed in 107.0.5304.68-1~deb11u1) forky: resolved (fixed in 107.0.5304.68-1) sid: r

CVE-2022-0971 [HIGH] CVE-2022-0971: chromium - Use after free in Blink Layout in Google Chrome on Android prior to 99.0.4844.74... Use after free in Blink Layout in Google Chrome on Android prior to 99.0.4844.74 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 99.0.4844.74-1) bullseye: resolved (fixed in 99.0.4844.74-1~deb11u1) forky: resolved (fixed in 99.0.4844.74-1) sid:

CVE-2022-1864 [HIGH] CVE-2022-1864: chromium - Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowe... Use after free in WebApp Installs in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Scope: local bookworm: resolved (fixed in 102.0.5005.61-1) bullseye: resolved (fixed in 102.0.5005.61-1~deb11u1) forky:

CVE-2022-2607 [HIGH] CVE-2022-2607: chromium - Use after free in Tab Strip in Google Chrome on Chrome OS prior to 104.0.5112.79... Use after free in Tab Strip in Google Chrome on Chrome OS prior to 104.0.5112.79 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific UI interactions. Scope: local bookworm: resolved (fixed in 104.0.5112.79-1) bullseye: resolved (fixed in 104.0.5112.79-1~deb11u1) forky: resolved (fi

CVE-2022-0302 [HIGH] CVE-2022-0302: chromium - Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an atta... Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: r

CVE-2022-3046 [HIGH] CVE-2022-3046: chromium - Use after free in Browser Tag in Google Chrome prior to 105.0.5195.52 allowed an... Use after free in Browser Tag in Google Chrome prior to 105.0.5195.52 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 105.0.5195.52-1) bullseye: resolved (fixed in 105.0.5195.52-1~deb11u1) forky: resolved (fixed in 105.0.5195.52-1) sid:

CVE-2022-0289 [HIGH] CVE-2022-0289: chromium - Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a... Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.99-1) bullseye: resolved (fixed in 97.0.4692.99-1~deb11u2) forky: resolved (fixed in 97.0.4692.99-1) sid: resolved (fixed in 97.0.4692.99-1) trixie: resolve

CVE-2022-1861 [HIGH] CVE-2022-1861: chromium - Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 a... Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corruption via specific user interaction. Scope: local bookworm: resolved (fixed in 102.0.5005.61-1) bullseye: resolved (fixed in 102.0.5005.61-1~deb11u1) forky: resolved (fixe

CVE-2022-0604 [HIGH] CVE-2022-0604: chromium - Heap buffer overflow in Tab Groups in Google Chrome prior to 98.0.4758.102 allow... Heap buffer overflow in Tab Groups in Google Chrome prior to 98.0.4758.102 allowed an attacker who convinced a user to install a malicious extension and engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.102-1) bullseye: resolved (fixed in 98.0.4758.102-1~deb11u1) for

CVE-2022-0454 [HIGH] CVE-2022-0454: chromium - Heap buffer overflow in ANGLE in Google Chrome prior to 98.0.4758.80 allowed a r... Heap buffer overflow in ANGLE in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.80-1) bullseye: resolved (fixed in 98.0.4758.80-1~deb11u1) forky: resolved (fixed in 98.0.4758.80-1) sid: resolved (fixed in 98.0.4758.80-1) trixie: resolved

CVE-2022-2162 [HIGH] CVE-2022-2162: chromium - Insufficient policy enforcement in File System API in Google Chrome on Windows p... Insufficient policy enforcement in File System API in Google Chrome on Windows prior to 103.0.5060.53 allowed a remote attacker to bypass file system access via a crafted HTML page. Scope: local bookworm: resolved (fixed in 103.0.5060.53-1) bullseye: resolved (fixed in 103.0.5060.53-1~deb11u1) forky: resolved (fixed in 103.0.5060.53-1) sid: resolved (fixed in 103.0.5

CVE-2022-0603 [HIGH] CVE-2022-0603: chromium - Use after free in File Manager in Google Chrome on Chrome OS prior to 98.0.4758.... Use after free in File Manager in Google Chrome on Chrome OS prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 98.0.4758.102-1) bullseye: resolved (fixed in 98.0.4758.102-1~deb11u1) forky: resolved (fixed in 98.0.4758.102-1) sid: resolved (fixed in 98.0.4758.102-1

CVE-2022-0100 [HIGH] CVE-2022-0100: chromium - Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71... Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 97.0.4692.71-0.1) bullseye: resolved (fixed in 97.0.4692.71-0.1~deb11u1) forky: resolved (fixed in 97.0.4692.71-0.1) sid: resolved (fixed in 97.0.4692.71-0.

CVE-2022-1863 [HIGH] CVE-2022-1863: chromium - Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an ... Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction. Scope: local bookworm: resolved (fixed in 102.0.5005.61-1) bullseye: resolved (fixed in 102.0.5005.61-1~deb11u1) forky: resol