Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:2135-1

Опубликовано: 28 июл. 2018
Источник: suse-cvrf

Описание

Security update for Chromium

This update for Chromium to version 68.0.3440.75 fixes multiple issues.

Security issues fixed (boo#1102530):

  • CVE-2018-6153: Stack buffer overflow in Skia
  • CVE-2018-6154: Heap buffer overflow in WebGL
  • CVE-2018-6155: Use after free in WebRTC
  • CVE-2018-6156: Heap buffer overflow in WebRTC
  • CVE-2018-6157: Type confusion in WebRTC
  • CVE-2018-6158: Use after free in Blink
  • CVE-2018-6159: Same origin policy bypass in ServiceWorker
  • CVE-2018-6161: Same origin policy bypass in WebAudio
  • CVE-2018-6162: Heap buffer overflow in WebGL
  • CVE-2018-6163: URL spoof in Omnibox
  • CVE-2018-6164: Same origin policy bypass in ServiceWorker
  • CVE-2018-6165: URL spoof in Omnibox
  • CVE-2018-6166: URL spoof in Omnibox
  • CVE-2018-6167: URL spoof in Omnibox
  • CVE-2018-6168: CORS bypass in Blink
  • CVE-2018-6169: Permissions bypass in extension installation
  • CVE-2018-6170: Type confusion in PDFium
  • CVE-2018-6171: Use after free in WebBluetooth
  • CVE-2018-6172: URL spoof in Omnibox
  • CVE-2018-6173: URL spoof in Omnibox
  • CVE-2018-6174: Integer overflow in SwiftShader
  • CVE-2018-6175: URL spoof in Omnibox
  • CVE-2018-6176: Local user privilege escalation in Extensions
  • CVE-2018-6177: Cross origin information leak in Blink
  • CVE-2018-6178: UI spoof in Extensions
  • CVE-2018-6179: Local file information leak in Extensions
  • CVE-2018-6044: Request privilege escalation in Extensions
  • CVE-2018-4117: Cross origin information leak in Blink

The following user interface changes are included:

  • Chrome will show the "Not secure" warning on all plain HTTP pages

Список пакетов

SUSE Package Hub for SUSE Linux Enterprise 12 SP2
chromedriver-68.0.3440.75-61.1
chromium-68.0.3440.75-61.1

Ссылки

Описание

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

A precision error in Skia in Google Chrome prior to 68.0.3440.75 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

A race condition in Oilpan in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Improper deserialization in WebGL in Google Chrome on Mac prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Insufficient origin checks for CSS content in Blink in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of reloads in Navigation in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Lack of timeout on extension install prompt in Extensions in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to trigger installation of an unwanted extension via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

A bad cast in PDFium in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Integer overflows in Swiftshader in Google Chrome prior to 68.0.3440.75 potentially allowed a remote attacker to execute arbitrary code via a crafted HTML page.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Eliding from the wrong side in an infobar in DevTools in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to Hide Chrome Security UI via a crafted Chrome Extension.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки

Описание

Insufficient enforcement of file access permission in the activeTab case in Extensions in Google Chrome prior to 68.0.3440.75 allowed an attacker who convinced a user to install a malicious extension to access files on the local file system via a crafted Chrome Extension.

Затронутые продукты
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromedriver-68.0.3440.75-61.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP2:chromium-68.0.3440.75-61.1
Ссылки
Уязвимость openSUSE-SU-2018:2135-1