Thorium_Archive/thorium-mirror
1
0
Fork 0
mirror of https://github.com/Alex313031/thorium.git synced 2025-01-09 03:07:48 -03:00
Code Issues Projects Releases Packages Wiki Activity
thorium-mirror/SECURITY.md
Alexander Frick 9dc76aa188 post M124 fixes
2024-05-17 03:32:26 -05:00

18 lines
932 B
Markdown
Raw Permalink Blame History

## Security
### Thorium Security Policy
- If it is a vulnerability in Chromium, please report it upstream [Here](https://bugs.chromium.org/p/chromium/issues/entry).
- If it is a vulnerability in Thorium, file an issue on GitHub. However, if it is major and/or a zero day, please email me instead at Alex313031@gmail.com
### List of major vulnerabilities fixed in Thorium
– libwebp WebP bug [CVE-2023-4863](https://nvd.nist.gov/vuln/detail/CVE-2023-4863) - Fixed in M117
– libvpx VP8 bug [CVE-2023-5217](https://nvd.nist.gov/vuln/detail/CVE-2023-5217) - Fixed in M117
– USB data validation bug [CVE-2023-5482](https://github.com/advisories/GHSA-7cjp-92p9-vr97) - Fixed in M120
– USB integer overflow bug [CVE-2023-5849](https://github.com/advisories/GHSA-pq78-6h8h-rcf4) - Fixed in M120
– Use after free bug [CVE-2024-4671](https://nvd.nist.gov/vuln/detail/CVE-2024-4671) - Fixed in M124
Reference in a new issue View git blame Copy permalink