FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple security fixes

Affected packages
	chromium	<	123.0.6312.122
	ungoogled-chromium	<	123.0.6312.122

Details

VuXML ID	7314942b-0889-46f0-b02b-2c60aabe4a82
Discovery	2024-04-10
Entry	2024-04-12

Chrome Releases reports:

This update includes 3 security fixes:

[331237485] High CVE-2024-3157: Out of bounds write in Compositing. Reported by DarkNavy on 2024-03-26

[328859176] High CVE-2024-3516: Heap buffer overflow in ANGLE. Reported by Bao (zx) Pham and Toan (suto) Pham of Qrious Secure on 2024-03-09

[331123811] High CVE-2024-3515: Use after free in Dawn. Reported by wgslfuzz on 2024-03-25

[source]

References

CVE Name	CVE-2024-3157
CVE Name	CVE-2024-3515
CVE Name	CVE-2024-3516
URL	https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_10.html