{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"97.0.4692.99-bp153.2.57.1","chromium":"97.0.4692.99-bp153.2.57.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP3","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"97.0.4692.99-bp153.2.57.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"chromedriver":"97.0.4692.99-bp153.2.57.1","chromium":"97.0.4692.99-bp153.2.57.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"chromium","purl":"pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"97.0.4692.99-bp153.2.57.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for chromium fixes the following issues:\n\nChromium 97.0.4692.99 (boo#1194919):\n\n* CVE-2022-0289: Use after free in Safe browsing\n* CVE-2022-0290: Use after free in Site isolation\n* CVE-2022-0291: Inappropriate implementation in Storage\n* CVE-2022-0292: Inappropriate implementation in Fenced Frames\n* CVE-2022-0293: Use after free in Web packaging\n* CVE-2022-0294: Inappropriate implementation in Push messaging\n* CVE-2022-0295: Use after free in Omnibox\n* CVE-2022-0296: Use after free in Printing\n* CVE-2022-0297: Use after free in Vulkan\n* CVE-2022-0298: Use after free in Scheduling\n* CVE-2022-0300: Use after free in Text Input Method Editor\n* CVE-2022-0301: Heap buffer overflow in DevTools\n* CVE-2022-0302: Use after free in Omnibox\n* CVE-2022-0303: Race in GPU Watchdog\n* CVE-2022-0304: Use after free in Bookmarks\n* CVE-2022-0305: Inappropriate implementation in Service Worker API\n* CVE-2022-0306: Heap buffer overflow in PDFium\n* CVE-2022-0307: Use after free in Optimization Guide\n* CVE-2022-0308: Use after free in Data Transfer\n* CVE-2022-0309: Inappropriate implementation in Autofill\n* CVE-2022-0310: Heap buffer overflow in Task Manager\n* CVE-2022-0311: Heap buffer overflow in Task Manager\n","id":"openSUSE-SU-2022:0019-1","modified":"2022-01-24T10:26:21Z","published":"2022-01-24T10:26:21Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WXZCTLOB2POU23DZG3IW6R4QQB3Q2FON/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1194919"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0289"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0290"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0291"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0292"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0293"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0294"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0295"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0296"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0297"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0298"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0300"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0301"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0302"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0303"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0304"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0305"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0306"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0307"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0308"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0309"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0310"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-0311"}],"related":["CVE-2022-0289","CVE-2022-0290","CVE-2022-0291","CVE-2022-0292","CVE-2022-0293","CVE-2022-0294","CVE-2022-0295","CVE-2022-0296","CVE-2022-0297","CVE-2022-0298","CVE-2022-0300","CVE-2022-0301","CVE-2022-0302","CVE-2022-0303","CVE-2022-0304","CVE-2022-0305","CVE-2022-0306","CVE-2022-0307","CVE-2022-0308","CVE-2022-0309","CVE-2022-0310","CVE-2022-0311"],"summary":"Security update for chromium","upstream":["CVE-2022-0289","CVE-2022-0290","CVE-2022-0291","CVE-2022-0292","CVE-2022-0293","CVE-2022-0294","CVE-2022-0295","CVE-2022-0296","CVE-2022-0297","CVE-2022-0298","CVE-2022-0300","CVE-2022-0301","CVE-2022-0302","CVE-2022-0303","CVE-2022-0304","CVE-2022-0305","CVE-2022-0306","CVE-2022-0307","CVE-2022-0308","CVE-2022-0309","CVE-2022-0310","CVE-2022-0311"]}