OPENSUSE-SU-2023:0277-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 29 Sept 2023, 07:34
Last modified:04 Feb 2026, 04:29
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
29 Sept 2023, 07:34
Published
Vulnerability first disclosed
04 Feb 2026, 04:29
Last Modified
Vulnerability information updated
Description
Security update for chromium This update for chromium fixes the following issues: - Chromium 117.0.5938.132 (boo#1215776): * CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx (boo#1215778) * CVE-2023-5186: Use after free in Passwords * CVE-2023-5187: Use after free in Extensions - Chromium 117.0.5938.92: * stability improvements
Affected Systems
- opensuse•chromium&distro=openSUSE Leap 15.4
< 117.0.5938.132-bp155.2.40.1
- opensuse•chromium&distro=openSUSE Leap 15.5
< 117.0.5938.132-bp155.2.40.1
- suse•chromium&distro=SUSE Package Hub 15 SP4
< 117.0.5938.132-bp155.2.40.1
- suse•chromium&distro=SUSE Package Hub 15 SP5
< 117.0.5938.132-bp155.2.40.1
References (6)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XVWTK2X25FKSQAO2JO5SKRXBOHGOHPUO/
- https://bugzilla.suse.com/1215776
- https://bugzilla.suse.com/1215778
- https://www.suse.com/security/cve/CVE-2023-5186
- https://www.suse.com/security/cve/CVE-2023-5187
- https://www.suse.com/security/cve/CVE-2023-5217