CVE-2022-4440 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-4440 Interim 1 9 2025-02-16T03:17:35Z current 2022-12-15T00:43:46Z 2025-02-16T03:17:35Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-4440 Use after free in Profiles in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/I5J6OPVTWIV2IR6E5RHOT42UIBBBHIPD/ E-Mail link for openSUSE-SU-2022:10244-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5GZONV2X67CIWI27PEH2RZABQNIN6PYU/ E-Mail link for openSUSE-SU-2022:10245-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EM2NIV5V5735TOCNGG6AUH4KJ62D3DNR/ E-Mail link for openSUSE-SU-2022:10254-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NVMVZHYNGC7MNXWYYPCKCBLKKYAGFJPY/ E-Mail link for openSUSE-SU-2023:0115-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 SP3 SUSE Package Hub 15 SP4 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap 15.4 NonFree openSUSE Leap 15.5 NonFree openSUSE Tumbleweed chromedriver-108.0.5359.124-1.1 chromedriver-108.0.5359.124-bp153.2.148.1 chromedriver-108.0.5359.124-bp154.2.55.1 chromium-108.0.5359.124-1.1 chromium-108.0.5359.124-bp153.2.148.1 chromium-108.0.5359.124-bp154.2.55.1 opera-94.0.4606.38-lp154.2.35.1 opera-99.0.4788.13-lp155.3.6.1 ungoogled-chromium-113.0.5672.92-1.1 ungoogled-chromium-chromedriver-113.0.5672.92-1.1 chromedriver-108.0.5359.124-bp153.2.148.1 as a component of SUSE Package Hub 15 SP3 chromium-108.0.5359.124-bp153.2.148.1 as a component of SUSE Package Hub 15 SP3 chromedriver-108.0.5359.124-bp154.2.55.1 as a component of SUSE Package Hub 15 SP4 chromium-108.0.5359.124-bp154.2.55.1 as a component of SUSE Package Hub 15 SP4 chromedriver-108.0.5359.124-bp153.2.148.1 as a component of openSUSE Leap 15.3 chromium-108.0.5359.124-bp153.2.148.1 as a component of openSUSE Leap 15.3 chromedriver-108.0.5359.124-bp154.2.55.1 as a component of openSUSE Leap 15.4 chromium-108.0.5359.124-bp154.2.55.1 as a component of openSUSE Leap 15.4 opera-94.0.4606.38-lp154.2.35.1 as a component of openSUSE Leap 15.4 NonFree opera-99.0.4788.13-lp155.3.6.1 as a component of openSUSE Leap 15.5 NonFree chromedriver-108.0.5359.124-1.1 as a component of openSUSE Tumbleweed chromium-108.0.5359.124-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed Use after free in Profiles in Google Chrome prior to 108.0.5359.124 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) CVE-2022-4440 SUSE Package Hub 15 SP3:chromedriver-108.0.5359.124-bp153.2.148.1 SUSE Package Hub 15 SP3:chromium-108.0.5359.124-bp153.2.148.1 SUSE Package Hub 15 SP4:chromedriver-108.0.5359.124-bp154.2.55.1 SUSE Package Hub 15 SP4:chromium-108.0.5359.124-bp154.2.55.1 openSUSE Leap 15.3:chromedriver-108.0.5359.124-bp153.2.148.1 openSUSE Leap 15.3:chromium-108.0.5359.124-bp153.2.148.1 openSUSE Leap 15.4:chromedriver-108.0.5359.124-bp154.2.55.1 openSUSE Leap 15.4:chromium-108.0.5359.124-bp154.2.55.1 openSUSE Leap 15.4 NonFree:opera-94.0.4606.38-lp154.2.35.1 openSUSE Leap 15.5 NonFree:opera-99.0.4788.13-lp155.3.6.1 openSUSE Tumbleweed:chromedriver-108.0.5359.124-1.1 openSUSE Tumbleweed:chromium-108.0.5359.124-1.1 openSUSE Tumbleweed:ungoogled-chromium-113.0.5672.92-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-113.0.5672.92-1.1 important 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H