rpm package

opensuse/opera&distro=openSUSE Leap 15.6 NonFree

pkg:rpm/opensuse/opera&distro=openSUSE%20Leap%2015.6%20NonFree

Vulnerabilities (60)

CVE	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2025-2783	—	KEV	< 117.0.5408.163-lp156.2.32.1	117.0.5408.163-lp156.2.32.1	Mar 26, 2025	Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2024-11395	—		< 116.0.5366.21-lp156.2.26.1	116.0.5366.21-lp156.2.26.1	Nov 19, 2024	Type Confusion in V8 in Google Chrome prior to 131.0.6778.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7971	—	KEV	< 113.0.5230.32-lp156.2.17.1	113.0.5230.32-lp156.2.17.1	Aug 21, 2024	Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6779	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6778	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: High)
CVE-2024-6777	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
CVE-2024-6776	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Use after free in Audio in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6775	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Use after free in Media Stream in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6774	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6773	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6772	—		< 112.0.5197.53-lp156.2.14.1	112.0.5197.53-lp156.2.14.1	Jul 16, 2024	Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6293	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 24, 2024	Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6292	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 24, 2024	Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6291	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 24, 2024	Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6290	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 24, 2024	Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-5847	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 11, 2024	Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5846	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 11, 2024	Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5845	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 11, 2024	Use after free in Audio in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5844	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 11, 2024	Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
CVE-2024-5843	—		< 112.0.5197.25-lp156.2.11.1	112.0.5197.25-lp156.2.11.1	Jun 11, 2024	Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to obfuscate security UI via a malicious file. (Chromium security severity: Medium)

CVE-2025-2783KEVMar 26, 2025
affected < 117.0.5408.163-lp156.2.32.1fixed 117.0.5408.163-lp156.2.32.1
Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. (Chromium security severity: High)
CVE-2024-11395Nov 19, 2024
affected < 116.0.5366.21-lp156.2.26.1fixed 116.0.5366.21-lp156.2.26.1
Type Confusion in V8 in Google Chrome prior to 131.0.6778.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7971KEVAug 21, 2024
affected < 113.0.5230.32-lp156.2.17.1fixed 113.0.5230.32-lp156.2.17.1
Type confusion in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6779Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Out of bounds memory access in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6778Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Race in DevTools in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to inject scripts or HTML into a privileged page via a crafted Chrome Extension. (Chromium security severity: High)
CVE-2024-6777Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Use after free in Navigation in Google Chrome prior to 126.0.6478.182 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: High)
CVE-2024-6776Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Use after free in Audio in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6775Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Use after free in Media Stream in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6774Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Use after free in Screen Capture in Google Chrome prior to 126.0.6478.182 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6773Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6772Jul 16, 2024
affected < 112.0.5197.53-lp156.2.14.1fixed 112.0.5197.53-lp156.2.14.1
Inappropriate implementation in V8 in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6293Jun 24, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6292Jun 24, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6291Jun 24, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in Swiftshader in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6290Jun 24, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in Dawn in Google Chrome prior to 126.0.6478.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-5847Jun 11, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5846Jun 11, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in PDFium in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5845Jun 11, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Use after free in Audio in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-5844Jun 11, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Heap buffer overflow in Tab Strip in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
CVE-2024-5843Jun 11, 2024
affected < 112.0.5197.25-lp156.2.11.1fixed 112.0.5197.25-lp156.2.11.1
Inappropriate implementation in Downloads in Google Chrome prior to 126.0.6478.54 allowed a remote attacker to obfuscate security UI via a malicious file. (Chromium security severity: Medium)

Page 1 of 3