Upstream information

CVE-2024-8362 at MITRE

Description

Use after free in WebAudio in Google Chrome prior to 128.0.6613.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

SUSE Bugzilla entry: 1230108 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Package Hub 15 SP5
  • chromedriver >= 128.0.6613.119-bp155.2.111.1
  • chromium >= 128.0.6613.119-bp155.2.111.1
Patchnames:
openSUSE-2024-283
SUSE Package Hub 15 SP6
  • chromedriver >= 128.0.6613.119-bp156.2.23.1
  • chromium >= 128.0.6613.119-bp156.2.23.1
Patchnames:
openSUSE-2024-278
openSUSE Leap 15.5
  • chromedriver >= 128.0.6613.119-bp155.2.111.1
  • chromium >= 128.0.6613.119-bp155.2.111.1
Patchnames:
openSUSE-2024-283
openSUSE Leap 15.6
  • chromedriver >= 128.0.6613.119-bp156.2.23.1
  • chromium >= 128.0.6613.119-bp156.2.23.1
Patchnames:
openSUSE-2024-278
openSUSE Tumbleweed
  • chromedriver >= 128.0.6613.119-1.1
  • chromium >= 128.0.6613.119-1.1
  • nodejs-electron >= 31.7.2-1.1
  • nodejs-electron-devel >= 31.7.2-1.1
  • nodejs-electron-doc >= 31.7.2-1.1
Patchnames:
openSUSE-Tumbleweed-2024-14313
openSUSE-Tumbleweed-2024-14425


SUSE Timeline for this CVE

CVE page created: Tue Sep 3 17:01:08 2024
CVE page last modified: Sat Oct 26 19:52:11 2024