CVE-2023-6345 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2023-6345 Interim 1 8 2025-12-23T02:17:24Z current 2023-12-01T00:13:31Z 2025-12-23T02:17:24Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2023-6345 Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UNQU7JCLG7KXCWPX566ZOCJ7WKAX3OEI/ E-Mail link for openSUSE-SU-2023:0387-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5KYG44T7BT4X7NZ6LSLZ3V2IJ27BBBPS/ E-Mail link for openSUSE-SU-2023:0396-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V7AX36UQ4VSQGG4N3ZTQIAWX4Z4ZHQAF/ E-Mail link for openSUSE-SU-2023:0397-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings Container suse/sl-micro/6.0/toolbox:latest Image SLE-Micro Image SLE-Micro-Azure Image SLE-Micro-BYOS Image SLE-Micro-BYOS-Azure Image SLE-Micro-BYOS-EC2 Image SLE-Micro-BYOS-GCE Image SLE-Micro-EC2 Image SLE-Micro-GCE SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Package Hub 15 SP4 SUSE Package Hub 15 SP5 openSUSE Leap 15.4 openSUSE Leap 15.4 NonFree openSUSE Leap 15.5 openSUSE Leap 15.5 NonFree openSUSE Tumbleweed chromedriver-119.0.6045.199-1.1 chromedriver-119.0.6045.199-bp154.2.147.1 chromedriver-119.0.6045.199-bp155.2.61.1 chromium-119.0.6045.199-1.1 chromium-119.0.6045.199-bp154.2.147.1 chromium-119.0.6045.199-bp155.2.61.1 libQt5Pdf5-5.15.17-1.1 libQt5PdfWidgets5-5.15.17-1.1 libavif libavif13 libqt5-qtpdf-devel-5.15.17-1.1 libqt5-qtpdf-examples-5.15.17-1.1 libqt5-qtpdf-imports-5.15.17-1.1 libqt5-qtpdf-private-headers-devel-5.15.17-1.1 libqt5-qtwebengine-5.15.17-1.1 libqt5-qtwebengine-devel-5.15.17-1.1 libqt5-qtwebengine-examples-5.15.17-1.1 libqt5-qtwebengine-private-headers-devel-5.15.17-1.1 nodejs-electron-27.1.3-1.1 nodejs-electron-devel-27.1.3-1.1 nodejs-electron-doc-27.1.3-1.1 opera-105.0.4970.34-lp154.2.65.1 opera-105.0.4970.34-lp155.3.24.1 supportutils-3.2.9-slfo.1.1_1.1 ungoogled-chromium-119.0.6045.199-1.1 ungoogled-chromium-chromedriver-119.0.6045.199-1.1 supportutils-3.2.9-slfo.1.1_1.1 as a component of Container suse/sl-micro/6.0/toolbox:latest supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-Azure supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-BYOS supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-BYOS-Azure supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-BYOS-EC2 supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-BYOS-GCE supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-EC2 supportutils-3.2.9-slfo.1.1_1.1 as a component of Image SLE-Micro-GCE chromedriver-119.0.6045.199-bp154.2.147.1 as a component of SUSE Package Hub 15 SP4 chromium-119.0.6045.199-bp154.2.147.1 as a component of SUSE Package Hub 15 SP4 chromedriver-119.0.6045.199-bp155.2.61.1 as a component of SUSE Package Hub 15 SP5 chromium-119.0.6045.199-bp155.2.61.1 as a component of SUSE Package Hub 15 SP5 chromedriver-119.0.6045.199-bp154.2.147.1 as a component of openSUSE Leap 15.4 chromium-119.0.6045.199-bp154.2.147.1 as a component of openSUSE Leap 15.4 opera-105.0.4970.34-lp154.2.65.1 as a component of openSUSE Leap 15.4 NonFree chromedriver-119.0.6045.199-bp155.2.61.1 as a component of openSUSE Leap 15.5 chromium-119.0.6045.199-bp155.2.61.1 as a component of openSUSE Leap 15.5 opera-105.0.4970.34-lp155.3.24.1 as a component of openSUSE Leap 15.5 NonFree chromedriver-119.0.6045.199-1.1 as a component of openSUSE Tumbleweed chromium-119.0.6045.199-1.1 as a component of openSUSE Tumbleweed libQt5Pdf5-5.15.17-1.1 as a component of openSUSE Tumbleweed libQt5PdfWidgets5-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-devel-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-examples-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-imports-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtpdf-private-headers-devel-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-devel-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-examples-5.15.17-1.1 as a component of openSUSE Tumbleweed libqt5-qtwebengine-private-headers-devel-5.15.17-1.1 as a component of openSUSE Tumbleweed nodejs-electron-27.1.3-1.1 as a component of openSUSE Tumbleweed nodejs-electron-devel-27.1.3-1.1 as a component of openSUSE Tumbleweed nodejs-electron-doc-27.1.3-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-119.0.6045.199-1.1 as a component of openSUSE Tumbleweed ungoogled-chromium-chromedriver-119.0.6045.199-1.1 as a component of openSUSE Tumbleweed libavif13 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP4 libavif as a component of SUSE Linux Enterprise Module for Basesystem 15 SP4 libavif13 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP5 libavif as a component of SUSE Linux Enterprise Module for Basesystem 15 SP5 Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High) CVE-2023-6345 Container suse/sl-micro/6.0/toolbox:latest:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-Azure:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-BYOS:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-BYOS-Azure:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-BYOS-EC2:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-BYOS-GCE:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-EC2:supportutils-3.2.9-slfo.1.1_1.1 Image SLE-Micro-GCE:supportutils-3.2.9-slfo.1.1_1.1 SUSE Package Hub 15 SP4:chromedriver-119.0.6045.199-bp154.2.147.1 SUSE Package Hub 15 SP4:chromium-119.0.6045.199-bp154.2.147.1 SUSE Package Hub 15 SP5:chromedriver-119.0.6045.199-bp155.2.61.1 SUSE Package Hub 15 SP5:chromium-119.0.6045.199-bp155.2.61.1 openSUSE Leap 15.4:chromedriver-119.0.6045.199-bp154.2.147.1 openSUSE Leap 15.4:chromium-119.0.6045.199-bp154.2.147.1 openSUSE Leap 15.4 NonFree:opera-105.0.4970.34-lp154.2.65.1 openSUSE Leap 15.5:chromedriver-119.0.6045.199-bp155.2.61.1 openSUSE Leap 15.5:chromium-119.0.6045.199-bp155.2.61.1 openSUSE Leap 15.5 NonFree:opera-105.0.4970.34-lp155.3.24.1 openSUSE Tumbleweed:chromedriver-119.0.6045.199-1.1 openSUSE Tumbleweed:chromium-119.0.6045.199-1.1 openSUSE Tumbleweed:libQt5Pdf5-5.15.17-1.1 openSUSE Tumbleweed:libQt5PdfWidgets5-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtpdf-devel-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtpdf-examples-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtpdf-imports-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtpdf-private-headers-devel-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-devel-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-examples-5.15.17-1.1 openSUSE Tumbleweed:libqt5-qtwebengine-private-headers-devel-5.15.17-1.1 openSUSE Tumbleweed:nodejs-electron-27.1.3-1.1 openSUSE Tumbleweed:nodejs-electron-devel-27.1.3-1.1 openSUSE Tumbleweed:nodejs-electron-doc-27.1.3-1.1 openSUSE Tumbleweed:ungoogled-chromium-119.0.6045.199-1.1 openSUSE Tumbleweed:ungoogled-chromium-chromedriver-119.0.6045.199-1.1 SUSE Linux Enterprise Module for Basesystem 15 SP4:libavif SUSE Linux Enterprise Module for Basesystem 15 SP4:libavif13 SUSE Linux Enterprise Module for Basesystem 15 SP5:libavif SUSE Linux Enterprise Module for Basesystem 15 SP5:libavif13 critical 9.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H