Update Chromium to 112.0.5615.165-1 (MINDBREEZE27225)

ID: MINDBREEZE27225 
Affected Components: Mindbreeze InSpire G7, Mindbreeze InSpire SaaS 
Severity: 8.8 High 
Status: Final 
First published: October 20, 2023 
CVEs: CVE-2023-2133, CVE-2023-2134, CVE-2023-2135, CVE-2023-2136, CVE-2023-2137, CVE-2023-2033, CVE-2023-1810, CVE-2023-1811, CVE-2023-1812, CVE-2023-1814, CVE-2023-1815, CVE-2023-1816, CVE-2023-1817, CVE-2023-1819, CVE-2023-1822, CVE-2023-1823 

Summary

• CVE-2023-2133 chromium: Out of bounds memory access in Service Worker API
• CVE-2023-2134 chromium: Out of bounds memory access in Service Worker API
• CVE-2023-2135 chromium: Use after free in DevTools in Google Chrome 
• CVE-2023-2136 chromium: Integer overflow in Skia in Google Chrome
• CVE-2023-2137 chromium: Heap buffer overflow in sqlite in Google Chrome
• CVE-2023-2033 chromium: Type confusion in V8 in Google Chrome
• CVE-2023-1810 chromium: Heap buffer overflow in Visuals
• CVE-2023-1811 chromium: Use after free in Frames
• CVE-2023-1812 chromium: Out of bounds memory access in DOM Bindings
• CVE-2023-1814 chromium: Insufficient validation of untrusted input in Safe Browsing
• CVE-2023-1815 chromium: Use after free in Networking APIs
• CVE-2023-1816 chromium: Incorrect security UI in Picture In Picture
• CVE-2023-1817 chromium: Insufficient policy enforcement in Intents
• CVE-2023-1819 chromium: Out of bounds read in Accessibility
• CVE-2023-1822 chromium: Incorrect security UI in Navigation
• CVE-2023-1823 chromium: Inappropriate implementation in FedCM

Hotfix Information

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS: 

• Mindbreeze InSpire 23.3 Release (Version 23.3.0.274) 

• Mindbreeze InSpire 23.3 SaaS Release (Version 23.3.0.274)