Description
The remote host is affected by the vulnerability described in GLSA-202210-16 (Chromium, Google Chrome, Microsoft Edge:
Multiple Vulnerabilities)
- Insufficient validation of untrusted input in DevTools in Google Chrome on Chrome OS prior to 105.0.5195.125 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page. (CVE-2022-3201)
- Microsoft Edge (Chromium-based) Spoofing Vulnerability. (CVE-2022-41035)
- Use after free in CSS. (CVE-2022-3304)
- Use after free in Survey. (CVE-2022-3305, CVE-2022-3306)
- Use after free in Media. (CVE-2022-3307)
- Insufficient policy enforcement in Developer Tools. (CVE-2022-3308)
- Use after free in Assistant. (CVE-2022-3309)
- Insufficient policy enforcement in Custom Tabs. (CVE-2022-3310)
- Use after free in Import. (CVE-2022-3311)
- Insufficient validation of untrusted input in VPN. (CVE-2022-3312)
- Incorrect security UI in Full Screen. (CVE-2022-3313)
- Use after free in Logging. (CVE-2022-3314)
- This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. (CVE-2022-3315, CVE-2022-3316, CVE-2022-3370, CVE-2022-3373)
- Insufficient validation of untrusted input in Intents. (CVE-2022-3317)
- Use after free in ChromeOS Notifications. (CVE-2022-3318)
- Use after free in Skia. (CVE-2022-3445)
- Heap buffer overflow in WebSQL. (CVE-2022-3446)
- Inappropriate implementation in Custom Tabs. (CVE-2022-3447)
- Use after free in Permissions API. (CVE-2022-3448)
- Use after free in Safe Browsing. (CVE-2022-3449)
- Use after free in Peer Connection. (CVE-2022-3450)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
All Chromium users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose >=www-client/chromium-106.0.5249.119 All Chromium binary users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose >=www-client/chromium-bin-106.0.5249.119 All Google Chrome users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose >=www-client/google-chrome-106.0.5249.119 All Microsoft Edge users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose >=www-client/microsoft-edge-106.0.1370.37
Plugin Details
File Name: gentoo_GLSA-202210-16.nasl
Supported Sensors: Nessus
Risk Information
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:gentoo:linux:google-chrome, p-cpe:/a:gentoo:linux:microsoft-edge, p-cpe:/a:gentoo:linux:chromium, cpe:/o:gentoo:linux, p-cpe:/a:gentoo:linux:chromium-bin
Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list
Exploit Ease: Exploits are available
Patch Publication Date: 10/31/2022
Vulnerability Publication Date: 9/14/2022
Reference Information
CVE: CVE-2022-3201, CVE-2022-3304, CVE-2022-3305, CVE-2022-3306, CVE-2022-3307, CVE-2022-3308, CVE-2022-3309, CVE-2022-3310, CVE-2022-3311, CVE-2022-3312, CVE-2022-3313, CVE-2022-3314, CVE-2022-3315, CVE-2022-3316, CVE-2022-3317, CVE-2022-3318, CVE-2022-3370, CVE-2022-3373, CVE-2022-3445, CVE-2022-3446, CVE-2022-3447, CVE-2022-3448, CVE-2022-3449, CVE-2022-3450, CVE-2022-41035