FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-29 10:45:39 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
4a026b6c-f2b8-11ee-8e76-a8a1599412c6	chromium -- multiple security fixes Chrome Releases reports: This update includes 3 security fixes: [329130358] High CVE-2024-3156: Inappropriate implementation in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-03-12 [329965696] High CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish on 2024-03-17 [330760873] High CVE-2024-3159: Out of bounds memory access in V8. Reported by Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto Networks, via Pwn2Own 2024 on 2024-03-22 Discovery 2024-04-02 Entry 2024-04-04 chromium < 123.0.6312.105 ungoogled-chromium < 123.0.6312.105 CVE-2024-3156 CVE-2024-3158 CVE-2024-3159 https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop.html
7314942b-0889-46f0-b02b-2c60aabe4a82	chromium -- multiple security fixes Chrome Releases reports: This update includes 3 security fixes: [331237485] High CVE-2024-3157: Out of bounds write in Compositing. Reported by DarkNavy on 2024-03-26 [328859176] High CVE-2024-3516: Heap buffer overflow in ANGLE. Reported by Bao (zx) Pham and Toan (suto) Pham of Qrious Secure on 2024-03-09 [331123811] High CVE-2024-3515: Use after free in Dawn. Reported by wgslfuzz on 2024-03-25 Discovery 2024-04-10 Entry 2024-04-12 chromium < 123.0.6312.122 ungoogled-chromium < 123.0.6312.122 CVE-2024-3157 CVE-2024-3516 CVE-2024-3515 https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_10.html
814af1be-ec63-11ee-8e76-a8a1599412c6	chromium -- multiple security fixes Chrome Releases reports: This update includes 7 security fixes: [327807820] Critical CVE-2024-2883: Use after free in ANGLE. Reported by Cassidy Kim(@cassidy6564) on 2024-03-03 [328958020] High CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz on 2024-03-11 [330575496] High CVE-2024-2886: Use after free in WebCodecs. Reported by Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024 on 2024-03-21 [330588502] High CVE-2024-2887: Type Confusion in WebAssembly. Reported by Manfred Paul, via Pwn2Own 2024 on 2024-03-21 Discovery 2024-03-26 Entry 2024-03-27 chromium < 123.0.6312.86 ungoogled-chromium < 123.0.6312.86 CVE-2024-2883 CVE-2024-2885 CVE-2024-2886 CVE-2024-2887 https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_26.html

VuXML ID

Description

4a026b6c-f2b8-11ee-8e76-a8a1599412c6

chromium -- multiple security fixes

Chrome Releases reports:

This update includes 3 security fixes:

[329130358] High CVE-2024-3156: Inappropriate implementation in V8. Reported by Zhenghang Xiao (@Kipreyyy) on 2024-03-12

[329965696] High CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish on 2024-03-17

[330760873] High CVE-2024-3159: Out of bounds memory access in V8. Reported by Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto Networks, via Pwn2Own 2024 on 2024-03-22

Discovery 2024-04-02
Entry 2024-04-04
chromium

< 123.0.6312.105

ungoogled-chromium

< 123.0.6312.105

CVE-2024-3156
CVE-2024-3158
CVE-2024-3159
https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop.html

7314942b-0889-46f0-b02b-2c60aabe4a82

chromium -- multiple security fixes

Chrome Releases reports:

This update includes 3 security fixes:

[331237485] High CVE-2024-3157: Out of bounds write in Compositing. Reported by DarkNavy on 2024-03-26

[328859176] High CVE-2024-3516: Heap buffer overflow in ANGLE. Reported by Bao (zx) Pham and Toan (suto) Pham of Qrious Secure on 2024-03-09

[331123811] High CVE-2024-3515: Use after free in Dawn. Reported by wgslfuzz on 2024-03-25

Discovery 2024-04-10
Entry 2024-04-12
chromium

< 123.0.6312.122

ungoogled-chromium

< 123.0.6312.122

CVE-2024-3157
CVE-2024-3516
CVE-2024-3515
https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_10.html

814af1be-ec63-11ee-8e76-a8a1599412c6

chromium -- multiple security fixes

Chrome Releases reports:

This update includes 7 security fixes:

[327807820] Critical CVE-2024-2883: Use after free in ANGLE. Reported by Cassidy Kim(@cassidy6564) on 2024-03-03

[328958020] High CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz on 2024-03-11

[330575496] High CVE-2024-2886: Use after free in WebCodecs. Reported by Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024 on 2024-03-21

[330588502] High CVE-2024-2887: Type Confusion in WebAssembly. Reported by Manfred Paul, via Pwn2Own 2024 on 2024-03-21

Discovery 2024-03-26
Entry 2024-03-27
chromium

< 123.0.6312.86

ungoogled-chromium

< 123.0.6312.86

CVE-2024-2883
CVE-2024-2885
CVE-2024-2886
CVE-2024-2887
https://chromereleases.googleblog.com/2024/03/stable-channel-update-for-desktop_26.html