[Bug 1071691] New: VUL-0: Chromium release 63.0.3239.84 fixing many vulnerabilities
http://bugzilla.suse.com/show_bug.cgi?id=1071691 Bug ID: 1071691 Summary: VUL-0: Chromium release 63.0.3239.84 fixing many vulnerabilities Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: tchvatal@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desk... Critical CVE-2017-15407: Out of bounds write in QUIC. High CVE-2017-15408: Heap buffer overflow in PDFium. High CVE-2017-15409: Out of bounds write in Skia. High CVE-2017-15410: Use after free in PDFium. High CVE-2017-15411: Use after free in PDFium. High CVE-2017-15412: Use after free in libXML. High CVE-2017-15413: Type confusion in WebAssembly. Medium CVE-2017-15415: Pointer information disclosure in IPC call. Medium CVE-2017-15416: Out of bounds read in Blink. Medium CVE-2017-15417: Cross origin information disclosure in Skia. Medium CVE-2017-15418: Use of uninitialized value in Skia. Medium CVE-2017-15419: Cross origin leak of redirect URL in Blink. Medium CVE-2017-15420: URL spoofing in Omnibox. Medium CVE-2017-15422: Integer overflow in ICU. Low CVE-2017-15423: Issue with SPAKE implementation in BoringSSL. Low CVE-2017-15424: URL Spoof in Omnibox. Low CVE-2017-15425: URL Spoof in Omnibox. Low CVE-2017-15426: URL Spoof in Omnibox. Low CVE-2017-15427: Insufficient blocking of JavaScript in Omnibox. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1071691
Johannes Segitz
http://bugzilla.suse.com/show_bug.cgi?id=1071691
Johannes Segitz
http://bugzilla.suse.com/show_bug.cgi?id=1071691
http://bugzilla.suse.com/show_bug.cgi?id=1071691#c1
--- Comment #1 from Bernhard Wiedemann
http://bugzilla.suse.com/show_bug.cgi?id=1071691
http://bugzilla.suse.com/show_bug.cgi?id=1071691#c2
Tomáš Chvátal
http://bugzilla.suse.com/show_bug.cgi?id=1071691
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1071691
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1071691
Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1071691
http://bugzilla.suse.com/show_bug.cgi?id=1071691#c4
--- Comment #4 from Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1071691
http://bugzilla.suse.com/show_bug.cgi?id=1071691#c5
--- Comment #5 from Swamp Workflow Management
http://bugzilla.suse.com/show_bug.cgi?id=1071691
http://bugzilla.suse.com/show_bug.cgi?id=1071691#c6
Alexander Bergmann
participants (1)
-
bugzilla_noreply@novell.com