libQt5Pdf5-5.15.9-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11985 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libQt5Pdf5-5.15.9-1.1 on GA media These are all security issues fixed in the libQt5Pdf5-5.15.9-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11985 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11985 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2022-0100/ SUSE CVE CVE-2022-0100 page https://www.suse.com/security/cve/CVE-2022-0102/ SUSE CVE CVE-2022-0102 page https://www.suse.com/security/cve/CVE-2022-0103/ SUSE CVE CVE-2022-0103 page https://www.suse.com/security/cve/CVE-2022-0104/ SUSE CVE CVE-2022-0104 page https://www.suse.com/security/cve/CVE-2022-0108/ SUSE CVE CVE-2022-0108 page https://www.suse.com/security/cve/CVE-2022-0109/ SUSE CVE CVE-2022-0109 page https://www.suse.com/security/cve/CVE-2022-0111/ SUSE CVE CVE-2022-0111 page https://www.suse.com/security/cve/CVE-2022-0113/ SUSE CVE CVE-2022-0113 page https://www.suse.com/security/cve/CVE-2022-0116/ SUSE CVE CVE-2022-0116 page https://www.suse.com/security/cve/CVE-2022-0289/ SUSE CVE CVE-2022-0289 page https://www.suse.com/security/cve/CVE-2022-0291/ SUSE CVE CVE-2022-0291 page https://www.suse.com/security/cve/CVE-2022-0293/ SUSE CVE CVE-2022-0293 page https://www.suse.com/security/cve/CVE-2022-0298/ SUSE CVE CVE-2022-0298 page https://www.suse.com/security/cve/CVE-2022-0305/ SUSE CVE CVE-2022-0305 page https://www.suse.com/security/cve/CVE-2022-0306/ SUSE CVE CVE-2022-0306 page https://www.suse.com/security/cve/CVE-2022-0310/ SUSE CVE CVE-2022-0310 page https://www.suse.com/security/cve/CVE-2022-0456/ SUSE CVE CVE-2022-0456 page https://www.suse.com/security/cve/CVE-2022-0459/ SUSE CVE CVE-2022-0459 page https://www.suse.com/security/cve/CVE-2022-0460/ SUSE CVE CVE-2022-0460 page https://www.suse.com/security/cve/CVE-2022-0461/ SUSE CVE CVE-2022-0461 page https://www.suse.com/security/cve/CVE-2022-0606/ SUSE CVE CVE-2022-0606 page https://www.suse.com/security/cve/CVE-2022-0607/ SUSE CVE CVE-2022-0607 page https://www.suse.com/security/cve/CVE-2022-0608/ SUSE CVE CVE-2022-0608 page https://www.suse.com/security/cve/CVE-2022-0609/ SUSE CVE CVE-2022-0609 page https://www.suse.com/security/cve/CVE-2022-0610/ SUSE CVE CVE-2022-0610 page https://www.suse.com/security/cve/CVE-2022-23852/ SUSE CVE CVE-2022-23852 page openSUSE Tumbleweed libQt5Pdf5-5.15.9-1.1 libQt5PdfWidgets5-5.15.9-1.1 libqt5-qtpdf-devel-5.15.9-1.1 libqt5-qtpdf-examples-5.15.9-1.1 libqt5-qtpdf-imports-5.15.9-1.1 libqt5-qtpdf-private-headers-devel-5.15.9-1.1 libqt5-qtwebengine-5.15.9-1.1 libqt5-qtwebengine-devel-5.15.9-1.1 libqt5-qtwebengine-examples-5.15.9-1.1 libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 libQt5Pdf5-5.15.9-1.1 as a component of openSUSE Tumbleweed libQt5PdfWidgets5-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-devel-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-examples-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-imports-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-private-headers-devel-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-devel-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-examples-5.15.9-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 as a component of openSUSE Tumbleweed Heap buffer overflow in Media streams API in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0100 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0100.html CVE-2022-0100 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Type confusion in V8 in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0102 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0102.html CVE-2022-0102 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0103 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0103.html CVE-2022-0103 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Heap buffer overflow in ANGLE in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0104 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0104.html CVE-2022-0104 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2022-0108 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0108.html CVE-2022-0108 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1210731 SUSE Bug 1210731 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Inappropriate implementation in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to obtain potentially sensitive information via a crafted HTML page. CVE-2022-0109 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0109.html CVE-2022-0109 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Inappropriate implementation in Navigation in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to incorrectly set origin via a crafted HTML page. CVE-2022-0111 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0111.html CVE-2022-0111 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Inappropriate implementation in Blink in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2022-0113 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0113.html CVE-2022-0113 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Inappropriate implementation in Compositing in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. CVE-2022-0116 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0116.html CVE-2022-0116 https://bugzilla.suse.com/1194331 SUSE Bug 1194331 https://bugzilla.suse.com/1213802 SUSE Bug 1213802 Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0289 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0289.html CVE-2022-0289 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Inappropriate implementation in Storage in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. CVE-2022-0291 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0291.html CVE-2022-0291 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0293 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0293.html CVE-2022-0293 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0298 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0298.html CVE-2022-0298 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Inappropriate implementation in Service Worker API in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. CVE-2022-0305 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0305.html CVE-2022-0305 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Heap buffer overflow in PDFium in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0306 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0306.html CVE-2022-0306 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Heap buffer overflow in Task Manager in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via specific user interactions. CVE-2022-0310 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0310.html CVE-2022-0310 https://bugzilla.suse.com/1194919 SUSE Bug 1194919 Use after free in Web Search in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via profile destruction. CVE-2022-0456 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0456.html CVE-2022-0456 https://bugzilla.suse.com/1195420 SUSE Bug 1195420 Use after free in Screen Capture in Google Chrome prior to 98.0.4758.80 allowed a remote attacker who had compromised the renderer process and convinced a user to engage in specific user interaction to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0459 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0459.html CVE-2022-0459 https://bugzilla.suse.com/1195420 SUSE Bug 1195420 Use after free in Window Dialogue in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0460 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0460.html CVE-2022-0460 https://bugzilla.suse.com/1195420 SUSE Bug 1195420 Policy bypass in COOP in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to bypass iframe sandbox via a crafted HTML page. CVE-2022-0461 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0461.html CVE-2022-0461 https://bugzilla.suse.com/1195420 SUSE Bug 1195420 Use after free in ANGLE in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0606 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0606.html CVE-2022-0606 https://bugzilla.suse.com/1195986 SUSE Bug 1195986 Use after free in GPU in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0607 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0607.html CVE-2022-0607 https://bugzilla.suse.com/1195986 SUSE Bug 1195986 Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0608 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0608.html CVE-2022-0608 https://bugzilla.suse.com/1195986 SUSE Bug 1195986 Use after free in Animation in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0609 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0609.html CVE-2022-0609 https://bugzilla.suse.com/1195986 SUSE Bug 1195986 Inappropriate implementation in Gamepad API in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-0610 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-0610.html CVE-2022-0610 https://bugzilla.suse.com/1195986 SUSE Bug 1195986 Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES. CVE-2022-23852 openSUSE Tumbleweed:libQt5Pdf5-5.15.9-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.9-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.9-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2022-23852.html CVE-2022-23852 https://bugzilla.suse.com/1195054 SUSE Bug 1195054 https://bugzilla.suse.com/1196480 SUSE Bug 1196480 https://bugzilla.suse.com/1200038 SUSE Bug 1200038 https://bugzilla.suse.com/1200198 SUSE Bug 1200198