FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple security fixes

Affected packages
	chromium	<	121.0.6167.160
	ungoogled-chromium	<	121.0.6167.160
	qt5-webengine	<	5.15.16.p5_5
	qt6-webengine	<	6.6.1_5

Details

VuXML ID	19047673-c680-11ee-86bb-a8a1599412c6
Discovery	2024-02-06
Entry	2024-02-08

Chrome Releases reports:

This update includes 3 security fixes:

[41494539] High CVE-2024-1284: Use after free in Mojo. Reported by Anonymous on 2024-01-25

[41494860] High CVE-2024-1283: Heap buffer overflow in Skia. Reported by Jorge Buzeti (@r3tr074) on 2024-01-25

[source]

References

CVE Name	CVE-2024-1283
CVE Name	CVE-2024-1284
URL	https://chromereleases.googleblog.com/2024/02/stable-channel-update-for-desktop.html