Bug ID 1137332
Summary VUL-0: chromium: multiple security issues fixed in 75.0.3770.80
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.1
Hardware Other
OS Other
Status NEW
Severity Major
Priority P5 - None
Component Security
Assignee tchvatal@suse.com
Reporter Andreas.Stieger@gmx.de
QA Contact qa-bugs@suse.de
CC security-team@suse.de
Found By Community User
Blocker --- 

https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-desktop.html

Fixed in Chromium 75.0.3770.80:

CVE-2019-5828: Use after free in ServiceWorker
CVE-2019-5829: Use after free in Download Manager
CVE-2019-5830: Incorrectly credentialed requests in CORS
CVE-2019-5831: Incorrect map processing in V8
CVE-2019-5832: Incorrect CORS handling in XHR
CVE-2019-5833: Inconsistent security UI placemen
CVE-2019-5835: Out of bounds read in Swiftshader
CVE-2019-5836: Heap buffer overflow in Angle
CVE-2019-5837: Cross-origin resources size disclosure in Appcache
CVE-2019-5838: Overly permissive tab access in Extensions
CVE-2019-5839: Incorrect handling of certain code points in Blink
CVE-2019-5840: Popup blocker bypass
Various fixes from internal audits, fuzzing and other initiatives

Other platforms:
CVE-2019-5834: URL spoof in Omnibox on iOS

You are receiving this mail because: