Описание
Security update for chromium
This update for Chromium to version 62.0.3202.89 fixes the following vulnerabilities (boo#1066851):
- CVE-2017-15398: Stack buffer overflow in QUIC
- CVE-2017-15399: Use after free in V8
Список пакетов
openSUSE Leap 42.2
chromedriver-62.0.3202.89-124.1
chromium-62.0.3202.89-124.1
openSUSE Leap 42.3
chromedriver-62.0.3202.89-124.1
chromium-62.0.3202.89-124.1
Ссылки
- E-Mail link for openSUSE-SU-2017:2953-1
- SUSE Security Ratings
Описание
A stack buffer overflow in the QUIC networking stack in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to gain code execution via a malicious server.
Затронутые продукты
openSUSE Leap 42.2:chromedriver-62.0.3202.89-124.1
openSUSE Leap 42.2:chromium-62.0.3202.89-124.1
openSUSE Leap 42.3:chromedriver-62.0.3202.89-124.1
openSUSE Leap 42.3:chromium-62.0.3202.89-124.1
Ссылки
- CVE-2017-15398
- SUSE Bug 1066851
- SUSE Bug 1066853
Описание
A use after free in V8 in Google Chrome prior to 62.0.3202.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 42.2:chromedriver-62.0.3202.89-124.1
openSUSE Leap 42.2:chromium-62.0.3202.89-124.1
openSUSE Leap 42.3:chromedriver-62.0.3202.89-124.1
openSUSE Leap 42.3:chromium-62.0.3202.89-124.1
Ссылки
- CVE-2017-15399
- SUSE Bug 1066851
- SUSE Bug 1066853