{"id":"MGASA-2023-0044","summary":"Updated chromium-browser-stable packages fix security vulnerability","details":"The chromium-browser-stable package has been updated to the 109.0.5414.119\nrelease, fixing 6 vulnerabilities.\n\nSome of the security fixes are:\nHigh CVE-2023-0471: Use after free in WebTransport. Reported by chichoo\nKim(chichoo) and Cassidy Kim(@cassidy6564) on 2022-10-19\nHigh CVE-2023-0472: Use after free in WebRTC. Reported by Cassidy\nKim(@cassidy6564) on 2023-01-06\nMedium CVE-2023-0473: Type Confusion in ServiceWorker API. Reported by\nraven at KunLun lab on 2023-01-03\nMedium CVE-2023-0474: Use after free in GuestView. Reported by avaue at\nS.S.L on 2022-12-14\n","modified":"2026-04-16T04:40:58.123491291Z","published":"2023-02-14T22:43:23Z","upstream":["CVE-2023-0471","CVE-2023-0472","CVE-2023-0473","CVE-2023-0474"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2023-0044.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=31465"},{"type":"WEB","url":"https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop_24.html"},{"type":"WEB","url":"https://www.androidpolice.com/google-chrome-109/"}],"affected":[{"package":{"name":"chromium-browser-stable","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"109.0.5414.119-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0044.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}