RHSA-2019:3759-01 -- Redhat chromium-browser, chromium-browser-debuginfoID: oval:org.secpod.oval:def:505547 | Date: (C)2020-12-31 (M)2024-02-19 |
Class: PATCH | Family: unix |
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 78.0.3904.70. Security Fix: * chromium-browser: Use-after-free in media * chromium-browser: Buffer overrun in Blink * chromium-browser: URL spoof in navigation * chromium-browser: Privilege elevation in Installer * chromium-browser: URL bar spoofing * chromium-browser: CSP bypass * chromium-browser: Extension permission bypass * chromium-browser: Out-of-bounds read in PDFium * chromium-browser: File storage disclosure * chromium-browser: HTTP authentication spoof * chromium-browser: File download protection bypass * chromium-browser: File download protection bypass * chromium-browser: Cross-context information leak * chromium-browser: Cross-origin data leak * chromium-browser: CSS injection * chromium-browser: Address bar spoofing * chromium-browser: Service worker state error * chromium-browser: Notification obscured * chromium-browser: IDN spoof * chromium-browser: Notification obscured For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 6 |
Product: |
chromium-browser |
chromium-browser-debuginfo |