ALT-BU-2022-3797-1
Branch sisyphus update bulletin.
Package llvm-common updated to version 12.0.0-alt3 for branch sisyphus in task 294061.
Closed bugs
Экспортирует невалидную версию llvm в сборочную среду
Package xorg-xwayland updated to version 22.0.99.901-alt1 for branch sisyphus in task 293864.
Closed vulnerabilities
BDU:2023-02146
Уязвимость программного пакета X.Org Server, связанная с использованием памяти после ее освобождения, позволяющая нарушителю повысить свои привилегии
Modified: 2025-02-14
CVE-2023-1393
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW), the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later.
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110
- FEDORA-2023-b7835960ac
- FEDORA-2023-b7835960ac
- FEDORA-2023-eb3c27ff25
- FEDORA-2023-eb3c27ff25
- FEDORA-2023-66d5af0278
- FEDORA-2023-66d5af0278
- FEDORA-2023-fe18ae3e85
- FEDORA-2023-fe18ae3e85
- FEDORA-2023-239bae4b57
- FEDORA-2023-239bae4b57
- FEDORA-2023-f754e7abfd
- FEDORA-2023-f754e7abfd
- FEDORA-2023-b87fd3a628
- FEDORA-2023-b87fd3a628
- FEDORA-2023-6f3f9ee721
- FEDORA-2023-6f3f9ee721
- GLSA-202305-30
- GLSA-202305-30
- https://www.openwall.com/lists/oss-security/2023/03/29/1
- https://www.openwall.com/lists/oss-security/2023/03/29/1
Closed vulnerabilities
Modified: 2024-11-21
CVE-2020-7988
An issue was discovered in tools/pass-change/result.php in phpIPAM 1.4. CSRF can be used to change the password of any user/admin, to escalate privileges, and to gain access to more data and functionality. This issue exists due to the lack of a requirement to provide the old password, and the lack of security tokens.
Package chromium-gost updated to version 97.0.4692.71-alt1 for branch sisyphus in task 294090.
Closed vulnerabilities
BDU:2021-06051
Уязвимость компонента BFCache браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06100
Уязвимость расширений браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06101
Уязвимость компонента UI браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06102
Уязвимость веб-приложений браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06117
Уязвимость реализации компонента «New Tab Page» («Новая вкладка») браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю оказать влияние на доступность данных или вызвать отказ в обслуживании
BDU:2021-06118
Уязвимость реализации функции автозаполнения Autofill браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06119
Уязвимость библиотеки ANGLE браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06120
Уязвимость загрузчика браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2021-06132
Уязвимость обработчика JavaScript-сценариев V8 браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06136
Уязвимость библиотеки ANGLE браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06137
Уязвимость компонента автодополнения Autofill браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации
BDU:2021-06151
Уязвимость расширения Window Manager браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06157
Уязвимость набора инструментов для веб-разработки DevTools браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06163
Уязвимость функции захват экрана (Screen Capture) браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06243
Уязвимость библиотеки SwiftShader браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06244
Уязвимость библиотеки SwiftShader браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06260
Уязвимость библиотеки ANGLE браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06261
Уязвимость компонента loader браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2021-06276
Уязвимость библиотеки передачи сообщений Mojo браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2021-06277
Уязвимость обработчика JavaScript-сценариев V8 браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании
BDU:2022-00081
Уязвимость интерфейса API браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-00082
Уязвимость расширения WebRTC браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-00091
Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-01029
Уязвимость компонента входа в систему Sign-In браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2022-01185
Уязвимость компонента SwiftShader браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-01186
Уязвимость реализации функции автозаполнения Autofill браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01187
Уязвимость реализации функции автозаполнения Autofill браузера Google Chrome, позволяющая нарушителю оказать воздействие на целостность защищаемой информации
BDU:2022-01198
Уязвимость компонента File Manager API браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-01233
Уязвимость элемента управления «Bookmarks» («Закладки») браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю выполнить произвольный код
BDU:2022-01235
Уязвимость реализации функции автозаполнения Autofill браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-01287
Уязвимость интерфейса File API браузера Google Chrome, позволяющая нарушителю обойти ограничения безопасности
BDU:2022-01294
Уязвимость интерфейса Web Serial API браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2022-01300
Уязвимость обработчика JavaScript-сценариев V8 браузера Microsoft Edge и Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2022-01308
Уязвимость интерфейса для поддержки потоковых аудио и видео данных Media streams API браузеров Google Chrome и Microsoft Edge, позволяющая нарушителю выполнить произвольный код в целевой системе
BDU:2022-01310
Уязвимость компонента Compositing браузеров браузеров Microsoft Edge и Google Chrome, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2022-01311
Уязвимость реализации компонента WebShare браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01333
Уязвимость механизма отображения веб-страниц Blink браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01359
Уязвимость функции Navigation браузера Google Chrome, позволяющая нарушителю подделать содержимое адресной строки
BDU:2022-01361
Уязвимость функции захват экрана (Screen Capture) браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2022-01362
Уязвимость набора инструментов для веб-разработки DevTools браузера Google Chrome, позволяющая нарушителю выйти из изолированной программной среды
BDU:2022-01380
Уязвимость компонента Storage браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
BDU:2022-01560
Уязвимость механизма отображения веб-страниц Blink браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01561
Уязвимость менеджера паролей браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01563
Уязвимость пользовательского интерфейса браузера Google Chrome, позволяющая нарушителю проводить спуфинг-атаки
BDU:2022-01708
Уязвимость обработчика PDF-содержимого браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
BDU:2022-01709
Уязвимость функции Navigation браузера Google Chrome, позволяющая нарушителю раскрыть защищаемую информацию
BDU:2022-01710
Уязвимость библиотеки ANGLE браузера Google Chrome, позволяющая нарушителю выполнить произвольный код
Modified: 2024-11-21
CVE-2021-4052
Use after free in web apps in Google Chrome prior to 96.0.4664.93 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1267661
- https://crbug.com/1267661
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4053
Use after free in UI in Google Chrome on Linux prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1267791
- https://crbug.com/1267791
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4054
Incorrect security UI in autofill in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1239760
- https://crbug.com/1239760
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4055
Heap buffer overflow in extensions in Google Chrome prior to 96.0.4664.93 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1266510
- https://crbug.com/1266510
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4056
Type confusion in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1260939
- https://crbug.com/1260939
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4057
Use after free in file API in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
- http://packetstormsecurity.com/files/165486/Chrome-storage-BlobURLStoreImpl-Revoke-Heap-Use-After-Free.html
- http://packetstormsecurity.com/files/165486/Chrome-storage-BlobURLStoreImpl-Revoke-Heap-Use-After-Free.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1262183
- https://crbug.com/1262183
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4058
Heap buffer overflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1267496
- https://crbug.com/1267496
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4059
Insufficient data validation in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1270990
- https://crbug.com/1270990
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4061
Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1271456
- https://crbug.com/1271456
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4062
Heap buffer overflow in BFCache in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1272403
- https://crbug.com/1272403
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4063
Use after free in developer tools in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1273176
- https://crbug.com/1273176
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4064
Use after free in screen capture in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1273197
- https://crbug.com/1273197
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4065
Use after free in autofill in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1273674
- https://crbug.com/1273674
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4066
Integer underflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1274499
- https://crbug.com/1274499
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4067
Use after free in window manager in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1274641
- https://crbug.com/1274641
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4068
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop.html
- https://crbug.com/1265197
- https://crbug.com/1265197
- FEDORA-2021-6a292e2cf4
- FEDORA-2021-6a292e2cf4
- GLSA-202208-25
- GLSA-202208-25
- DSA-5046
- DSA-5046
Modified: 2024-11-21
CVE-2021-4078
Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2024-11-21
CVE-2021-4079
Out of bounds write in WebRTC in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via crafted WebRTC packets.
Modified: 2024-11-21
CVE-2021-4098
Insufficient data validation in Mojo in Google Chrome prior to 96.0.4664.110 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Modified: 2024-11-21
CVE-2021-4099
Use after free in Swiftshader in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2024-11-21
CVE-2021-4100
Object lifecycle issue in ANGLE in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2024-11-21
CVE-2021-4101
Heap buffer overflow in Swiftshader in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2025-03-13
CVE-2021-4102
Use after free in V8 in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Modified: 2024-11-21
CVE-2022-0096
Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1275020
- https://crbug.com/1275020
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0097
Inappropriate implementation in DevTools in Google Chrome prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to to potentially allow extension to escape the sandbox via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1117173
- https://crbug.com/1117173
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0098
Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gestures.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1273609
- https://crbug.com/1273609
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0099
Use after free in Sign-in in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gesture.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1245629
- https://crbug.com/1245629
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0100
Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1238209
- https://crbug.com/1238209
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0101
Heap buffer overflow in Bookmarks in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via specific user gesture.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1249426
- https://crbug.com/1249426
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0102
Type confusion in V8 in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1260129
- https://crbug.com/1260129
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0103
Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1272266
- https://crbug.com/1272266
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0104
Heap buffer overflow in ANGLE in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1273661
- https://crbug.com/1273661
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0105
Use after free in PDF Accessibility in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1274376
- https://crbug.com/1274376
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0106
Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1278960
- https://crbug.com/1278960
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0107
Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1248438
- https://crbug.com/1248438
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0108
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- [oss-security] 20230421 WebKitGTK and WPE WebKit Security Advisory WSA-2023-0003
- [oss-security] 20230421 WebKitGTK and WPE WebKit Security Advisory WSA-2023-0003
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1248444
- https://crbug.com/1248444
- [debian-lts-announce] 20230512 [SECURITY] [DLA 3419-1] webkit2gtk security update
- [debian-lts-announce] 20230512 [SECURITY] [DLA 3419-1] webkit2gtk security update
- FEDORA-2023-a4bbf02a57
- FEDORA-2023-a4bbf02a57
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2023-5b61346bbe
- FEDORA-2023-5b61346bbe
- FEDORA-2023-8900b35c6f
- FEDORA-2023-8900b35c6f
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
- DSA-5396
- DSA-5396
- DSA-5397
- DSA-5397
Modified: 2024-11-21
CVE-2022-0109
Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1261689
- https://crbug.com/1261689
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0110
Incorrect security UI in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1237310
- https://crbug.com/1237310
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0111
Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1241188
- https://crbug.com/1241188
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0112
Incorrect security UI in Browser UI in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to display missing URL or incorrect URL via a crafted URL.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1255713
- https://crbug.com/1255713
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0113
Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1039885
- https://crbug.com/1039885
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0114
Out of bounds memory access in Blink Serial API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page and virtual serial port driver.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1267627
- https://crbug.com/1267627
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0115
Uninitialized use in File API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1268903
- https://crbug.com/1268903
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0116
Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1272250
- https://crbug.com/1272250
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0117
Policy bypass in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1115847
- https://crbug.com/1115847
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0118
Inappropriate implementation in WebShare in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially hide the contents of the Omnibox (URL bar) via a crafted HTML page.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1238631
- https://crbug.com/1238631
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Modified: 2024-11-21
CVE-2022-0120
Inappropriate implementation in Passwords in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially leak cross-origin data via a malicious website.
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://chromereleases.googleblog.com/2022/01/stable-channel-update-for-desktop.html
- https://crbug.com/1262953
- https://crbug.com/1262953
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-d1a15f9cdb
- FEDORA-2022-49b52819a4
- FEDORA-2022-49b52819a4
- FEDORA-2022-57923346cf
- FEDORA-2022-57923346cf
Closed vulnerabilities
BDU:2022-00488
Уязвимость библиотеки Polkit и инструмента песочницы Bubblewrap, вызванная переполнением буфера на стеке, позволяющая нарушителю повысить свои привилегии до уровня суперпользователя
Modified: 2025-04-03
CVE-2021-4034
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it'll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.
- http://packetstormsecurity.com/files/166196/Polkit-pkexec-Local-Privilege-Escalation.html
- http://packetstormsecurity.com/files/166196/Polkit-pkexec-Local-Privilege-Escalation.html
- http://packetstormsecurity.com/files/166200/Polkit-pkexec-Privilege-Escalation.html
- http://packetstormsecurity.com/files/166200/Polkit-pkexec-Privilege-Escalation.html
- https://access.redhat.com/security/vulnerabilities/RHSB-2022-001
- https://access.redhat.com/security/vulnerabilities/RHSB-2022-001
- https://bugzilla.redhat.com/show_bug.cgi?id=2025869
- https://bugzilla.redhat.com/show_bug.cgi?id=2025869
- https://cert-portal.siemens.com/productcert/pdf/ssa-330556.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-330556.pdf
- https://gitlab.freedesktop.org/polkit/polkit/-/commit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683
- https://gitlab.freedesktop.org/polkit/polkit/-/commit/a2bf5c9c83b6ae46cbd5c779d3055bff81ded683
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
- https://www.qualys.com/2022/01/25/cve-2021-4034/pwnkit.txt
- https://www.secpod.com/blog/local-privilege-escalation-vulnerability-in-major-linux-distributions-cve-2021-4034/
- https://www.secpod.com/blog/local-privilege-escalation-vulnerability-in-major-linux-distributions-cve-2021-4034/
- https://www.starwindsoftware.com/security/sw-20220818-0001/
- https://www.starwindsoftware.com/security/sw-20220818-0001/
- https://www.suse.com/support/kb/doc/?id=000020564
- https://www.suse.com/support/kb/doc/?id=000020564
- https://www.vicarius.io/vsociety/posts/pwnkit-pkexec-lpe-cve-2021-4034