Author Archives: Durga Nallari

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS (Long Term Support) channel, to version 114.0.5735.358 (Platform Version: 15437.98.0) for most ChromeOS devices.  

Want to know more about Long Term Support? Click here.

This update contains selective Security fixes, including:

Chrome Browser Security Fixes

[1521571]    High  CVE-2024-1284 Use after free in Mojo

Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.351 (Platform Version: 15437.91.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains selective Security fixes, including:


[40945671]     High  CVE-2024-0807 Use after free in WebAudio

[40945515]     High   CVE-2024-0808 Integer underflow in WebUI

ChromeOS Vulnerability Bug Fixes:
High Users are able to bypass policies using kiosk apps in kiosk mode

Other 3rd Party Security Fixes Included:
Medium Fixes CVE-2023-51042 in Linux Kernel
Medium Fixes CVE-2023-6931 in Linux Kernel
Medium Fixes CVE-2023-6817 in Linux Kernel
Medium Fixes CVE-2023-46813 in Linux Kernel
Medium Fixes CVE-2023-6932 in Linux Kernel


Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.350 (Platform Version: 15437.90.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.


This update contains multiple Security fixes, including:
[1494565]     High  CVE-2023-6509 Use after free in Side Panel Search
[1513379]     High   CVE-2024-0333 Insufficient data validation in Extensions
[306119937]  Medium Fixes in Kernel for CVEs listed below
CVE-2023-21162, CVE-2023-21163, CVE-2023-21164, CVE-2023-21166, 
CVE-2023-21215, CVE-2023-21216, CVE-2023-21217, CVE-2023-21218, 
CVE-2023-21228, CVE-2023-21402



Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.347 (Platform Version: 15437.87.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains multiple Security fixes, including:
1500921  High  CVE-2023-6706 Use after free in FedCM
1502102  High CVE-2023-6703 Use after free in Blink
1497984  High CVE-2023-6508 Use after free in Media Stream
1517354  High CVE-2024-0519 Out of bounds memory access in V8
High Fixes CVE-2023-4969 (LeftoverLocals) GPU Memory Leak on impacted platforms. Also see 446598 (https://kb.cert.org/vuls/id/446598)



Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

 

LTS-114 is being updated in the LTS channel to 114.0.5735.346 (Platform Version: 15437.84.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains multiple Security fixes, including:

1513170 High  CVE-2023-7024  Heap Buffer overflow in WebRTC
303161001 High Fixes CVE-2023-5197 in Linux Kernel
1473957  Medium CVE-2023-5851 Inappropriate implementation in Downloads
1480852 Medium CVE-2023-5852 Use after free in Printing
1492396 Medium CVE-2023-5855 Use after free in Reading Mode




Durga Nallari
Google ChromeOS