FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple security fixes

Affected packages
	chromium	<	123.0.6312.105
	ungoogled-chromium	<	123.0.6312.105

Details

VuXML ID	4a026b6c-f2b8-11ee-8e76-a8a1599412c6
Discovery	2024-04-02
Entry	2024-04-04

Chrome Releases reports:

This update includes 3 security fixes:

[329130358] High CVE-2024-3156: Inappropriate implementation in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-03-12

[329965696] High CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish on 2024-03-17

[330760873] High CVE-2024-3159: Out of bounds memory access in V8. Reported by Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto Networks, via Pwn2Own 2024 on 2024-03-22

[source]

References

CVE Name	CVE-2024-3156
CVE Name	CVE-2024-3158
CVE Name	CVE-2024-3159
URL	https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop.html