[3.6] chromium: Multiple vulnerabilities (CVE-2017-5006, CVE-2017-5007, CVE-2017-5008, CVE-2017-5019, CVE-2017-5020, CVE-2017-5021, CVE-2017-5022, CVE-2017-5023, CVE-2017-5024, CVE-2017-5025, CVE-2017-5026)ID: oval:org.secpod.oval:def:1800176 | Date: (C)2018-03-28 (M)2023-11-10 |
Class: PATCH | Family: unix |
CVE-2017-5006: Universal XSS in Blink.CVE-2017-5007: Universal XSS in Blink. CVE-2017-5008: Universal XSS in Blink.CVE-2017-5009: Out of bounds memory access in WebRTC. CVE-2017-5010: Universal XSS in Blink. CVE-2017-5011: Unauthorised file access in Devtools.CVE-2017-5012: Heap overflow in V8. CVE-2017-5013: Address spoofing in Omnibox.CVE-2017-5014: Heap overflow in Skia. CVE-2017-5015: Address spoofing in Omnibox. CVE-2017-5016: UI spoofing in Blink. CVE-2017-5017: Uninitialised memory access in webm video.CVE-2017-5018: Universal XSS in chrome://apps.CVE-2017-5019: Use after free in Renderer.CVE-2017-5020: Universal XSS in chrome://downloads. CVE-2017-5021: Use after free in Extensions. CVE-2017-5022: Bypass of Content Security Policy in Blink. CVE-2017-5023: Type confusion in metrics. CVE-2017-5024: Heap overflow in FFmpeg. CVE-2017-5025: Heap overflow in FFmpeg. CVE-2017-5026: UI spoofing. Fixed In Version: Chrome 56.0.2924.76
Platform: |
Alpine Linux 3.6 |