VYPR

rpm package

opensuse/opera&distro=openSUSE Leap 15.5 NonFree

pkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.5%20NonFree

Vulnerabilities (188)

  • CVE-2024-6779Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6778Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: High)

  • CVE-2024-6777Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)

  • CVE-2024-6776Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Use after free in Audio in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6775Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Use after free in Media Stream in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6774Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6773Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6772Jul 16, 2024
    affected < 112.0.5197.53-lp155.3.57.1fixed 112.0.5197.53-lp155.3.57.1

    Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6293Jun 24, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6292Jun 24, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6291Jun 24, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-6290Jun 24, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

  • CVE-2024-5847Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

  • CVE-2024-5846Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

  • CVE-2024-5845Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Audio in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

  • CVE-2024-5844Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2024-5843Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to obfuscate security UI via a malicious file. (Chromium security severity: Medium)

  • CVE-2024-5842Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in Browser UI in Google Chrome prior to 126.0.6478.54 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2024-5841Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Use after free in V8 in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

  • CVE-2024-5840Jun 11, 2024
    affected < 112.0.5197.25-lp155.3.54.1fixed 112.0.5197.25-lp155.3.54.1

    Policy bypass in CORS in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. (Chromium security severity: Medium)

Page 1 of 10