RHSA-2018:2282-01 -- Redhat chromium-browser, chromium-browser-debuginfoID: oval:org.secpod.oval:def:505664 | Date: (C)2021-01-04 (M)2024-05-22 |
Class: PATCH | Family: unix |
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 68.0.3440.75. Security Fix: * chromium-browser: Stack buffer overflow in Skia * chromium-browser: Heap buffer overflow in WebGL * chromium-browser: Use after free in WebRTC * chromium-browser: Heap buffer overflow in WebRTC * chromium-browser: Type confusion in WebRTC * chromium-browser: Cross origin information disclosure in Service Workers * chromium-browser: Bad cast in DevTools * chromium-browser: Local file write in DevTools * chromium-browser: Use after free in Blink * chromium-browser: Same origin policy bypass in ServiceWorker * chromium-browser: Same origin policy bypass in WebAudio * chromium-browser: Heap buffer overflow in WebGL * chromium-browser: URL spoof in Omnibox * chromium-browser: Same origin policy bypass in ServiceWorker * chromium-browser: URL spoof in Omnibox * chromium-browser: URL spoof in Omnibox * chromium-browser: URL spoof in Omnibox * chromium-browser: CORS bypass in Blink * chromium-browser: Permissions bypass in extension installation * chromium-browser: Type confusion in PDFium * chromium-browser: Use after free in WebBluetooth * chromium-browser: URL spoof in Omnibox * chromium-browser: URL spoof in Omnibox * chromium-browser: Integer overflow in SwiftShader * chromium-browser: URL spoof in Omnibox * chromium-browser: Local user privilege escalation in Extensions * chromium-browser: Cross origin information leak in Blink * chromium-browser: Request privilege escalation in Extensions * chromium-browser: Cross origin information leak in Blink * chromium-browser: UI spoof in Extensions * chromium-browser: Local file information leak in Extensions For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 6 |
Product: |
chromium-browser |
chromium-browser-debuginfo |