CVE-2022-3310 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-3310 Interim 1 10 2025-02-16T03:22:00Z current 2022-09-27T23:41:33Z 2025-02-16T03:22:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-3310 Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. (Chromium security severity: Medium) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YZBW4AE4VW4MIHPWQLMJEIBGACVXWAFW/ E-Mail link for openSUSE-SU-2022:10138-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WVCRR5JKWC4AEVTDL4IYBETTO2CE74I6/ E-Mail link for openSUSE-SU-2022:10139-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 SP3 SUSE Package Hub 15 SP4 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed chromedriver-106.0.5249.91-1.1 chromedriver-106.0.5249.91-bp153.2.125.1 chromedriver-106.0.5249.91-bp154.2.32.1 chromium-106.0.5249.91-1.1 chromium-106.0.5249.91-bp153.2.125.1 chromium-106.0.5249.91-bp154.2.32.1 ungoogled-chromium-113.0.5672.92-1.1 ungoogled-chromium-chromedriver-113.0.5672.92-1.1 chromedriver-106.0.5249.91-bp153.2.125.1 as a component of SUSE Package Hub 15 SP3 chromium-106.0.5249.91-bp153.2.125.1 as a component of SUSE Package Hub 15 SP3 chromedriver-106.0.5249.91-bp154.2.32.1 as a component of SUSE Package Hub 15 SP4 chromium-106.0.5249.91-bp154.2.32.1 as a component of SUSE Package Hub 15 SP4 chromedriver-106.0.5249.91-bp153.2.125.1 as a component of openSUSE Leap 15.3 chromium-106.0.5249.91-bp153.2.125.1 as a component of openSUSE Leap 15.3 chromedriver-106.0.5249.91-bp154.2.32.1 as a component of openSUSE Leap 15.4 chromium-106.0.5249.91-bp154.2.32.1 as a component of openSUSE Leap 15.4 chromedriver-106.0.5249.91-1.1 as a component of openSUSE Tumbleweed chromium-106.0.5249.91-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-113.0.5672.92-1.1 as a component of openSUSE Tumbleweed Insufficient policy enforcement in custom tabs in Google Chrome on Android prior to 106.0.5249.62 allowed an attacker who convinced the user to install an application to bypass same origin policy via a crafted application. (Chromium security severity: Medium) CVE-2022-3310 SUSE Package Hub 15 SP3:chromedriver-106.0.5249.91-bp153.2.125.1 SUSE Package Hub 15 SP3:chromium-106.0.5249.91-bp153.2.125.1 SUSE Package Hub 15 SP4:chromedriver-106.0.5249.91-bp154.2.32.1 SUSE Package Hub 15 SP4:chromium-106.0.5249.91-bp154.2.32.1 openSUSE Leap 15.3:chromedriver-106.0.5249.91-bp153.2.125.1 openSUSE Leap 15.3:chromium-106.0.5249.91-bp153.2.125.1 openSUSE Leap 15.4:chromedriver-106.0.5249.91-bp154.2.32.1 openSUSE Leap 15.4:chromium-106.0.5249.91-bp154.2.32.1 openSUSE Tumbleweed:chromedriver-106.0.5249.91-1.1 openSUSE Tumbleweed:chromium-106.0.5249.91-1.1 openSUSE Tumbleweed:ungoogled-chromium-113.0.5672.92-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-113.0.5672.92-1.1 important 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N