libQt5Pdf5-5.15.18-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:14548-1 Final 1 1 2024-12-05T00:00:00Z current 2024-12-05T00:00:00Z 2024-12-05T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libQt5Pdf5-5.15.18-1.1 on GA media These are all security issues fixed in the libQt5Pdf5-5.15.18-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-14548 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-3157/ SUSE CVE CVE-2024-3157 page https://www.suse.com/security/cve/CVE-2024-3516/ SUSE CVE CVE-2024-3516 page https://www.suse.com/security/cve/CVE-2024-3837/ SUSE CVE CVE-2024-3837 page https://www.suse.com/security/cve/CVE-2024-3839/ SUSE CVE CVE-2024-3839 page https://www.suse.com/security/cve/CVE-2024-3914/ SUSE CVE CVE-2024-3914 page https://www.suse.com/security/cve/CVE-2024-4058/ SUSE CVE CVE-2024-4058 page https://www.suse.com/security/cve/CVE-2024-45492/ SUSE CVE CVE-2024-45492 page https://www.suse.com/security/cve/CVE-2024-4558/ SUSE CVE CVE-2024-4558 page https://www.suse.com/security/cve/CVE-2024-4761/ SUSE CVE CVE-2024-4761 page https://www.suse.com/security/cve/CVE-2024-5158/ SUSE CVE CVE-2024-5158 page https://www.suse.com/security/cve/CVE-2024-5496/ SUSE CVE CVE-2024-5496 page https://www.suse.com/security/cve/CVE-2024-5846/ SUSE CVE CVE-2024-5846 page https://www.suse.com/security/cve/CVE-2024-6291/ SUSE CVE CVE-2024-6291 page https://www.suse.com/security/cve/CVE-2024-6989/ SUSE CVE CVE-2024-6989 page https://www.suse.com/security/cve/CVE-2024-6996/ SUSE CVE CVE-2024-6996 page https://www.suse.com/security/cve/CVE-2024-7532/ SUSE CVE CVE-2024-7532 page https://www.suse.com/security/cve/CVE-2024-7536/ SUSE CVE CVE-2024-7536 page https://www.suse.com/security/cve/CVE-2024-7965/ SUSE CVE CVE-2024-7965 page https://www.suse.com/security/cve/CVE-2024-7967/ SUSE CVE CVE-2024-7967 page https://www.suse.com/security/cve/CVE-2024-7971/ SUSE CVE CVE-2024-7971 page https://www.suse.com/security/cve/CVE-2024-8198/ SUSE CVE CVE-2024-8198 page https://www.suse.com/security/cve/CVE-2024-8636/ SUSE CVE CVE-2024-8636 page https://www.suse.com/security/cve/CVE-2024-9123/ SUSE CVE CVE-2024-9123 page https://www.suse.com/security/cve/CVE-2024-9602/ SUSE CVE CVE-2024-9602 page https://www.suse.com/security/cve/CVE-2024-9603/ SUSE CVE CVE-2024-9603 page openSUSE Tumbleweed libQt5Pdf5-5.15.18-1.1 libQt5PdfWidgets5-5.15.18-1.1 libqt5-qtpdf-devel-5.15.18-1.1 libqt5-qtpdf-examples-5.15.18-1.1 libqt5-qtpdf-imports-5.15.18-1.1 libqt5-qtpdf-private-headers-devel-5.15.18-1.1 libqt5-qtwebengine-5.15.18-1.1 libqt5-qtwebengine-devel-5.15.18-1.1 libqt5-qtwebengine-examples-5.15.18-1.1 libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 libQt5Pdf5-5.15.18-1.1 as a component of openSUSE Tumbleweed libQt5PdfWidgets5-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-devel-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-examples-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-imports-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-private-headers-devel-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-devel-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-examples-5.15.18-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 as a component of openSUSE Tumbleweed Out of bounds memory access in Compositing in Google Chrome prior to 123.0.6312.122 allowed a remote attacker who had compromised the GPU process to potentially perform a sandbox escape via specific UI gestures. (Chromium security severity: High) CVE-2024-3157 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-3157.html CVE-2024-3157 https://bugzilla.suse.com/1222707 SUSE Bug 1222707 Heap buffer overflow in ANGLE in Google Chrome prior to 123.0.6312.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-3516 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-3516.html CVE-2024-3516 https://bugzilla.suse.com/1222707 SUSE Bug 1222707 Use after free in QUIC in Google Chrome prior to 124.0.6367.60 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CVE-2024-3837 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-3837.html CVE-2024-3837 https://bugzilla.suse.com/1222958 SUSE Bug 1222958 Out of bounds read in Fonts in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. (Chromium security severity: Medium) CVE-2024-3839 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-3839.html CVE-2024-3839 https://bugzilla.suse.com/1222958 SUSE Bug 1222958 Use after free in V8 in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-3914 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-3914.html CVE-2024-3914 https://bugzilla.suse.com/1222958 SUSE Bug 1222958 Type confusion in ANGLE in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) CVE-2024-4058 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-4058.html CVE-2024-4058 https://bugzilla.suse.com/1223845 SUSE Bug 1223845 An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX). CVE-2024-45492 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-45492.html CVE-2024-45492 https://bugzilla.suse.com/1229930 SUSE Bug 1229930 https://bugzilla.suse.com/1229932 SUSE Bug 1229932 Use after free in ANGLE in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-4558 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-4558.html CVE-2024-4558 https://bugzilla.suse.com/1224045 SUSE Bug 1224045 Out of bounds write in V8 in Google Chrome prior to 124.0.6367.207 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High) CVE-2024-4761 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-4761.html CVE-2024-4761 https://bugzilla.suse.com/1224294 SUSE Bug 1224294 Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to potentially perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) CVE-2024-5158 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-5158.html CVE-2024-5158 https://bugzilla.suse.com/1224818 SUSE Bug 1224818 Use after free in Media Session in Google Chrome prior to 125.0.6422.141 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High) CVE-2024-5496 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-5496.html CVE-2024-5496 https://bugzilla.suse.com/1225690 SUSE Bug 1225690 Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium) CVE-2024-5846 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-5846.html CVE-2024-5846 https://bugzilla.suse.com/1226205 SUSE Bug 1226205 Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-6291 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-6291.html CVE-2024-6291 https://bugzilla.suse.com/1226933 SUSE Bug 1226933 Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-6989 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-6989.html CVE-2024-6989 https://bugzilla.suse.com/1228940 SUSE Bug 1228940 Race in Frames in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium) CVE-2024-6996 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-6996.html CVE-2024-6996 https://bugzilla.suse.com/1228940 SUSE Bug 1228940 Out of bounds memory access in ANGLE in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical) CVE-2024-7532 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-7532.html CVE-2024-7532 https://bugzilla.suse.com/1228941 SUSE Bug 1228941 Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-7536 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-7536.html CVE-2024-7536 https://bugzilla.suse.com/1228941 SUSE Bug 1228941 Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-7965 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-7965.html CVE-2024-7965 https://bugzilla.suse.com/1229591 SUSE Bug 1229591 Heap buffer overflow in Fonts in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-7967 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-7967.html CVE-2024-7967 https://bugzilla.suse.com/1229591 SUSE Bug 1229591 Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-7971 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-7971.html CVE-2024-7971 https://bugzilla.suse.com/1229591 SUSE Bug 1229591 Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.113 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-8198 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-8198.html CVE-2024-8198 https://bugzilla.suse.com/1229897 SUSE Bug 1229897 Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-8636 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-8636.html CVE-2024-8636 https://bugzilla.suse.com/1230391 SUSE Bug 1230391 Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High) CVE-2024-9123 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-9123.html CVE-2024-9123 https://bugzilla.suse.com/1230964 SUSE Bug 1230964 Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High) CVE-2024-9602 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-9602.html CVE-2024-9602 https://bugzilla.suse.com/1231420 SUSE Bug 1231420 Type Confusion in V8 in Google Chrome prior to 129.0.6668.100 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CVE-2024-9603 openSUSE Tumbleweed:libQt5Pdf5-5.15.18-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.18-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.18-1.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-9603.html CVE-2024-9603 https://bugzilla.suse.com/1231420 SUSE Bug 1231420