Chromium Security Update (MINDBREEZE32590)

ID: MINDBREEZE32590
Affected Components: Mindbreeze InSpire, Mindbreeze InSpire SaaS
Severity: 6.8 Medium
Status: Final
First published: December 2, 2024
CVEs: CVE-2024-7969, CVE-2024-8193, CVE-2024-8194, CVE-2024-8198, CVE-2024-8362, CVE-2024-7970, CVE-2024-8636, CVE-2024-8637, CVE-2024-8638, CVE-2024-8639, CVE-2024-8904, CVE-2024-8905, CVE-2024-8906, CVE-2024-8907, CVE-2024-8908, CVE-2024-8909, CVE-2024-9120, CVE-2024-9121, CVE-2024-9122, CVE-2024-9123, CVE-2024-7025, CVE-2024-9369, CVE-2024-9370, CVE-2024-9602, CVE-2024-9603

Summary

chromium - Component: Type Confusion in V8.
chromium - Component: Heap buffer overflow in Skia.
chromium - Component: Use after free in WebAudio.
chromium - Component: Use after free in Media Router.
chromium - Component: Use after free in Autofill.
chromium - Component: Use after free in Dawn.
chromium - Component: Out of bounds write in V8.
chromium - Component: Incorrect security UI in Downloads.
chromium - Component: Insufficient data validation in Omnibox.
chromium - Component: Insufficient data validation in Mojo.
chromium - Component: Inappropriate implementation in Autofill.
chromium - Component: Inappropriate implementation in UI.
chromium - Component: Inappropriate implementation in V8.
chromium - Component: Integer overflow in Skia.
chromium - Component: Integer overflow in Layout.

Hotfix Information

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS:

Mindbreeze InSpire Release 24.7
Mindbreeze InSpire Saas Release 24.7

Chromium Security Update (MINDBREEZE32590)

Summary

Social Media

Security

Support

Newsletter

Language