[Forgot Password]
Login  Register Subscribe

24128

 
 

131573

 
 

110204

 
 

909

 
 

85984

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-3985-1 chromium-browser -- chromium-browser

ID: oval:org.secpod.oval:def:603117Date: (C)2017-10-05   (M)2018-01-22
Class: PATCHFamily: unix




Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5111 Luat Nguyen discovered a use-after-free issue in the pdfium library. CVE-2017-5112 Tobias Klein discovered a buffer overflow issue in the webgl library. CVE-2017-5113 A buffer overflow issue was discovered in the skia library. CVE-2017-5114 Ke Liu discovered a memory issue in the pdfium library. CVE-2017-5115 Marco Giovannini discovered a type confusion issue in the v8 javascript library. CVE-2017-5116 Guang Gong discovered a type confusion issue in the v8 javascript library. CVE-2017-5117 Tobias Klein discovered an uninitialized value in the skia library. CVE-2017-5118 WenXu Wu discovered a way to bypass the Content Security Policy. CVE-2017-5119 Another uninitialized value was discovered in the skia library. CVE-2017-5120 Xiaoyin Liu discovered a way downgrade HTTPS connections during redirection. CVE-2017-5121 Jordan Rabet discovered an out-of-bounds memory access in the v8 javascript library. CVE-2017-5122 Choongwoo Han discovered an out-of-bounds memory access in the v8 javascript library.

Platform:
Debian 9.x
Product:
chromium
Reference:
DSA-3985-1
CVE-2017-5111
CVE-2017-5112
CVE-2017-5113
CVE-2017-5114
CVE-2017-5115
CVE-2017-5116
CVE-2017-5117
CVE-2017-5118
CVE-2017-5119
CVE-2017-5120
CVE-2017-5121
CVE-2017-5122
CVE    12
CVE-2017-5120
CVE-2017-5119
CVE-2017-5117
CVE-2017-5118
...
CPE    3758
cpe:/a:google:chrome:19.0.1073.0
cpe:/a:google:chrome:19.0.1055.3
cpe:/a:google:chrome:19.0.1055.2
cpe:/a:google:chrome:19.0.1055.1
...

© SecPod Technologies