Chromium v106 and CVEs
#2361
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
{{ message }}
-
I checked all CVEs listed in https://chromereleases.googleblog.com/2022/09/stable-channel-update-for-desktop_27.html
if you want, we can backport the two which can be exploited in bromite 105, so you have more time.
[1358907] High CVE-2022-3304: Use after free in CSS. Reported by Anonymous on 2022-09-01
https://chromium-review.googlesource.com/c/chromium/src/+/3892782
[1323488] High CVE-2022-3307: Use after free in Media. Reported by Anonymous Telecommunications Corp. Ltd. on 2022-05-08
https://chromium-review.googlesource.com/c/chromium/src/+/3865452
the others are not operative in bromite
Beta Was this translation helpful? Give feedback.
All reactions