Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2019:1325-1

Опубликовано: 04 мая 2019
Источник: suse-cvrf

Описание

Security update for chromium

This update for chromium fixes the following issues:

Chromium was updated to 74.0.3729.108 boo#1133313:

  • CVE-2019-5805: Use after free in PDFium
  • CVE-2019-5806: Integer overflow in Angle
  • CVE-2019-5807: Memory corruption in V8
  • CVE-2019-5808: Use after free in Blink
  • CVE-2019-5809: Use after free in Blink
  • CVE-2019-5810: User information disclosure in Autofill
  • CVE-2019-5811: CORS bypass in Blink
  • CVE-2019-5813: Out of bounds read in V8
  • CVE-2019-5814: CORS bypass in Blink
  • CVE-2019-5815: Heap buffer overflow in Blink
  • CVE-2019-5818: Uninitialized value in media reader
  • CVE-2019-5819: Incorrect escaping in developer tools
  • CVE-2019-5820: Integer overflow in PDFium
  • CVE-2019-5821: Integer overflow in PDFium
  • CVE-2019-5822: CORS bypass in download manager
  • CVE-2019-5823: Forced navigation from service worker
  • CVE-2019-5812: URL spoof in Omnibox on iOS
  • CVE-2019-5816: Exploit persistence extension on Android
  • CVE-2019-5817: Heap buffer overflow in Angle on Windows
  • Update conditions to use system harfbuzz on TW+
  • Require java during build
  • Enable using pipewire when available

Список пакетов

openSUSE Leap 15.0
chromedriver-74.0.3729.108-lp150.209.2
chromium-74.0.3729.108-lp150.209.2

Ссылки

Описание

Use-after-free in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Integer overflow in ANGLE in Google Chrome on Windows prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Object lifetime issue in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Use after free in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Use after free in file chooser in Google Chrome prior to 74.0.3729.108 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Information leak in autofill in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Inadequate security UI in iOS UI in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to perform domain spoofing via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Use after free in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Insufficient policy enforcement in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Type confusion in xsltNumberFormatGetMultipleLevel prior to libxslt 1.1.33 could allow attackers to potentially exploit heap corruption via crafted XML data.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Process lifetime issue in Chrome in Google Chrome on Android prior to 74.0.3729.108 allowed a remote attacker to potentially persist an exploited process via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Uninitialized data in media in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted video file.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Insufficient data validation in developer tools in Google Chrome on OS X prior to 74.0.3729.108 allowed a local attacker to execute arbitrary code via a crafted string copied to clipboard.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Integer overflow in PDFium in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Inappropriate implementation in Blink in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass same origin policy via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки

Описание

Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

Затронутые продукты
openSUSE Leap 15.0:chromedriver-74.0.3729.108-lp150.209.2
openSUSE Leap 15.0:chromium-74.0.3729.108-lp150.209.2
Ссылки
Уязвимость openSUSE-SU-2019:1325-1