http://bugzilla.opensuse.org/show_bug.cgi?id=1137332 Bug ID: 1137332 Summary: VUL-0: chromium: multiple security issues fixed in 75.0.3770.80 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.1 Hardware: Other OS: Other Status: NEW Severity: Major Priority: P5 - None Component: Security Assignee: tchvatal@suse.com Reporter: Andreas.Stieger@gmx.de QA Contact: qa-bugs@suse.de CC: security-team@suse.de Found By: Community User Blocker: --- https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-desk... Fixed in Chromium 75.0.3770.80: CVE-2019-5828: Use after free in ServiceWorker CVE-2019-5829: Use after free in Download Manager CVE-2019-5830: Incorrectly credentialed requests in CORS CVE-2019-5831: Incorrect map processing in V8 CVE-2019-5832: Incorrect CORS handling in XHR CVE-2019-5833: Inconsistent security UI placemen CVE-2019-5835: Out of bounds read in Swiftshader CVE-2019-5836: Heap buffer overflow in Angle CVE-2019-5837: Cross-origin resources size disclosure in Appcache CVE-2019-5838: Overly permissive tab access in Extensions CVE-2019-5839: Incorrect handling of certain code points in Blink CVE-2019-5840: Popup blocker bypass Various fixes from internal audits, fuzzing and other initiatives Other platforms: CVE-2019-5834: URL spoof in Omnibox on iOS -- You are receiving this mail because: You are on the CC list for the bug.