Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArchLinuxASA-201703-4
HistoryMar 11, 2017 - 12:00 a.m.

[ASA-201703-4] chromium: multiple issues

2017-03-1100:00:00
security.archlinux.org
11

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.566 Medium

EPSS

Percentile

97.7%

JSON

Arch Linux Security Advisory ASA-201703-4

Severity: Critical
Date : 2017-03-11
CVE-ID : CVE-2017-5029 CVE-2017-5030 CVE-2017-5031 CVE-2017-5032
CVE-2017-5033 CVE-2017-5034 CVE-2017-5035 CVE-2017-5036
CVE-2017-5037 CVE-2017-5038 CVE-2017-5039 CVE-2017-5040
CVE-2017-5042 CVE-2017-5043 CVE-2017-5044 CVE-2017-5045
CVE-2017-5046
Package : chromium
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-197

Summary

The package chromium before version 57.0.2987.98-1 is vulnerable to
multiple issues including arbitrary code execution, content spoofing,
access restriction bypass and information disclosure.

Resolution

Upgrade to 57.0.2987.98-1.

pacman -Syu “chromium>=57.0.2987.98-1”

The problems have been fixed upstream in version 57.0.2987.98.

Workaround

None.

Description

  • CVE-2017-5029 (arbitrary code execution)

An integer overflow issue has been found in libxslt, leading to an out
of bounds write on 64-bit systems.

  • CVE-2017-5030 (arbitrary code execution)

A memory corruption flaw was found in the V8 component of the Chromium
browser.

  • CVE-2017-5031 (arbitrary code execution)

A use-after-free flaw has been found in the ANGLE component of the
Chromium browser.

  • CVE-2017-5032 (arbitrary code execution)

An out of bounds write flaw has been found in the PDFium component of
the Chromium browser.

  • CVE-2017-5033 (access restriction bypass)

A flaw allowing to bypass the content security policy has been found in
the Blink component of the Chromium browser.

  • CVE-2017-5034 (arbitrary code execution)

A use after free flaw has been found in the PDFium component of the
Chromium browser.

  • CVE-2017-5035 (content spoofing)

An incorrect security ui flaw was found in the Omnibox component of the
Chromium browser.

  • CVE-2017-5036 (arbitrary code execution)

A use after free flaw has been found in the PDFium component of the
Chromium browser.

  • CVE-2017-5037 (arbitrary code execution)

Multiple out of bounds writes have been found in the ChunkDemuxer
component of the Chromium browser.

  • CVE-2017-5038 (arbitrary code execution)

A use after free flaw has been found in the GuestView component of the
Chromium browser.

  • CVE-2017-5039 (arbitrary code execution)

A use after free flaw has been found in the PDFium component of the
Chromium browser.

  • CVE-2017-5040 (information disclosure)

An information disclosure flaw has been found in the V8 component of
the Chromium browser.

  • CVE-2017-5042 (information disclosure)

An issue resulting from incorrect handling of cookies has been found in
the Cast component of the Chromium browser.

  • CVE-2017-5043 (arbitrary code execution)

A use after free flaw has been found in the GuestView component of the
Chromium browser.

  • CVE-2017-5044 (arbitrary code execution)

A heap overflow flaw has been found in the Skia component of the
Chromium browser.

  • CVE-2017-5045 (information disclosure)

An information disclosure flaw has been found in the XSS Auditor
component of the Chromium browser.

  • CVE-2017-5046 (information disclosure)

An information disclosure flaw has been found in the Blink component of
the Chromium browser.

Impact

A remote attacker can spoof an address in omnibox, bypass the content
security policy, access sensitive information and execute arbitrary
code on the affected host.

References

https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop.html
https://git.gnome.org/browse/libxslt/commit/?id=08ab2774b870de1c7b5a48693df75e8154addae5
https://crbug.com/676623
https://crbug.com/682194
https://crbug.com/682020
https://crbug.com/668724
https://crbug.com/669086
https://crbug.com/678461
https://crbug.com/688425
https://crbug.com/691371
https://crbug.com/679640
https://crbug.com/695476
https://crbug.com/679649
https://crbug.com/691323
https://crbug.com/671932
https://crbug.com/683523
https://crbug.com/688987
https://crbug.com/667079
https://crbug.com/680409
https://security.archlinux.org/CVE-2017-5029
https://security.archlinux.org/CVE-2017-5030
https://security.archlinux.org/CVE-2017-5031
https://security.archlinux.org/CVE-2017-5032
https://security.archlinux.org/CVE-2017-5033
https://security.archlinux.org/CVE-2017-5034
https://security.archlinux.org/CVE-2017-5035
https://security.archlinux.org/CVE-2017-5036
https://security.archlinux.org/CVE-2017-5037
https://security.archlinux.org/CVE-2017-5038
https://security.archlinux.org/CVE-2017-5039
https://security.archlinux.org/CVE-2017-5040
https://security.archlinux.org/CVE-2017-5042
https://security.archlinux.org/CVE-2017-5043
https://security.archlinux.org/CVE-2017-5044
https://security.archlinux.org/CVE-2017-5045
https://security.archlinux.org/CVE-2017-5046

OSVersionArchitecturePackageVersionFilename
ArchLinuxanyanychromium< 57.0.2987.98-1UNKNOWN

References

Related

suse 2
nessus 26
openvas 18
debian 3
freebsd 2
osv 4
redhat 1
ubuntu 2
gentoo 2
chrome 1
threatpost 1
mageia 2
cve 17
prion 17
redhatcve 21
ubuntucve 17
debiancve 17
attackerkb 1
cisa_kev 1
zdi 1
checkpoint_advisories 1
kaspersky 1
mozilla 1
github 1
archlinux 1
alpinelinux 1
fedora 3
talosblog 1
seebug 1
talos 1
rubygems 1
photon 2
ibm 1
apple 12
altlinux 1
tenable 1
suse
suse
Security update for Chromium (important)
2017-03-18 00:08:56
Security update for Chromium (important)
2017-03-18 00:09:23
nessus
nessus
RHEL 6 : chromium-browser (RHSA-2017:0499)
2017-03-14 00:00:00
FreeBSD : chromium -- multiple vulnerabilities (a505d397-0758-11e7-8d8b-e8e0b747a45a)
2017-03-13 00:00:00
openSUSE Security Update : Chromium (openSUSE-2017-353)
2017-03-20 00:00:00
openvas
openvas
Google Chrome Security Updates(stable-channel-update-for-desktop-2017-03)-MAC OS X
2017-03-10 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2017:0738-1)
2017-03-18 00:00:00
Google Chrome Security Updates(stable-channel-update-for-desktop-2017-03)-Windows
2017-03-10 00:00:00
debian
debian
[SECURITY] [DSA 3810-1] chromium-browser security update
2017-03-15 12:29:29
[SECURITY] [DSA 3810-1] chromium-browser security update
2017-03-15 12:29:29
[SECURITY] [DLA 866-1] libxslt security update
2017-03-23 13:20:26
freebsd
freebsd
chromium -- multiple vulnerabilities
2017-03-09 00:00:00
GitLab -- multiple vulnerabilities
2017-09-07 00:00:00
osv
osv
chromium-browser - security update
2017-03-15 00:00:00
libxslt - security update
2017-03-23 00:00:00
Nokogiri implementation of libxslt lacks integer overflow checks
2018-07-31 18:21:29
redhat
redhat
(RHSA-2017:0499) Important: chromium-browser security update
2017-03-14 06:03:42
ubuntu
ubuntu
Oxide vulnerabilities
2017-03-29 00:00:00
Libxslt vulnerabilities
2017-04-28 00:00:00
gentoo
gentoo
Chromium: Multiple vulnerabilities
2017-04-10 00:00:00
libxslt: Multiple vulnerabilities
2018-04-04 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2017-03-09 00:00:00
threatpost
threatpost
Google Chrome 57 Browser Update Patches 'High' Severity Flaws
2017-03-10 11:43:32
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2017-04-21 10:24:22
Updated libxslt packages fix security vulnerability
2017-05-02 09:37:59
cve
cve
CVE-2017-5046
2017-04-24 23:59:00
CVE-2017-5043
2017-04-24 23:59:00
CVE-2017-5042
2017-04-24 23:59:00
prion
prion
Design/Logic Flaw
2017-04-24 23:59:00
Design/Logic Flaw
2017-04-24 23:59:00
Design/Logic Flaw
2017-04-24 23:59:00
redhatcve
redhatcve
CVE-2017-5039
2017-03-10 09:20:09
CVE-2017-5046
2017-03-10 09:20:52
CVE-2017-5044
2017-03-10 09:20:59
ubuntucve
ubuntucve
CVE-2017-5038
2017-04-24 00:00:00
CVE-2017-5046
2017-03-10 00:00:00
CVE-2017-5032
2017-04-24 00:00:00
debiancve
debiancve
CVE-2017-5038
2017-04-24 23:59:00
CVE-2017-5042
2017-04-24 23:59:00
CVE-2017-5039
2017-04-24 23:59:00
attackerkb
attackerkb
CVE-2017-5030
2017-04-24 00:00:00
cisa_kev
cisa_kev
Google Chromium V8 Memory Corruption Vulnerability
2022-06-08 00:00:00
zdi
zdi
(Pwn2Own) Sony X800G Smart TV Vewd Out-Of-Bounds Read Remote Code Execution Vulnerability
2020-01-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Google Chrome Browser V8 Memory Corruption (CVE-2017-5030)
2022-07-20 00:00:00
kaspersky
kaspersky
KLA11001 Use-after-free vulnerability in Mozilla Firefox and Mozilla Firefox ESR
2017-05-05 00:00:00
mozilla
mozilla
Use after free in ANGLE — Mozilla
2017-05-05 00:00:00
github
github
Nokogiri implementation of libxslt lacks integer overflow checks
2018-07-31 18:21:29
archlinux
archlinux
[ASA-201703-5] libxslt: arbitrary code execution
2017-03-12 00:00:00
alpinelinux
alpinelinux
CVE-2017-5029
2017-04-24 23:59:00
fedora
fedora
[SECURITY] Fedora 26 Update: qt5-qtwebengine-5.9.0-4.fc26
2017-07-06 22:53:47
[SECURITY] Fedora 25 Update: qt5-qtwebengine-5.9.0-4.fc25
2017-07-12 03:27:41
[SECURITY] Fedora 24 Update: qt5-qtwebengine-5.6.3-0.1.20170712gitee719ad313e564.fc24
2017-07-23 21:52:43
talosblog
talosblog
Vulnerability Spotlight: Content Security Policy bypass in Microsoft Edge, Google Chrome and Apple Safari
2017-09-06 11:18:00
seebug
seebug
Microsoft Edge Content Security Bypass Vulnerability
2017-09-12 00:00:00
talos
talos
Microsoft Edge Content Security Bypass Vulnerability
2017-09-06 00:00:00
rubygems
rubygems
Nokogiri gem contains two upstream vulnerabilities in libxslt 1.1.29
2017-05-08 21:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0018
2017-05-31 00:00:00
Important Photon OS Security Update - PHSA-2017-0044
2017-05-31 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in libxslt affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems
2023-04-14 14:32:25
apple
apple
About the security content of iCloud for Windows 6.2
2017-03-28 00:00:00
About the security content of iCloud for Windows 6.2 - Apple Support
2017-04-24 06:47:37
About the security content of iTunes 12.6 for Windows
2017-03-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 52.1.1-alt1
2017-05-08 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.566 Medium

EPSS

Percentile

97.7%

JSON
Related for ASA-201703-4
suse2nessus26openvas18debian3freebsd2osv4redhat1ubuntu2gentoo2chrome1threatpost1mageia2cve17prion17redhatcve21ubuntucve17debiancve17attackerkb1cisa_kev1zdi1checkpoint_advisories1kaspersky1mozilla1github1archlinux1alpinelinux1fedora3talosblog1seebug1talos1rubygems1photon2ibm1apple12altlinux1tenable1