Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArchLinuxASA-201910-17
HistoryOct 26, 2019 - 12:00 a.m.

[ASA-201910-17] chromium: multiple issues

2019-10-2600:00:00
security.archlinux.org
7

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.4%

JSON

Arch Linux Security Advisory ASA-201910-17

Severity: High
Date : 2019-10-26
CVE-ID : CVE-2019-13699 CVE-2019-13700 CVE-2019-13701 CVE-2019-13702
CVE-2019-13703 CVE-2019-13704 CVE-2019-13705 CVE-2019-13706
CVE-2019-13707 CVE-2019-13708 CVE-2019-13709 CVE-2019-13710
CVE-2019-13711 CVE-2019-13713 CVE-2019-13714 CVE-2019-13715
CVE-2019-13716 CVE-2019-13717 CVE-2019-13718 CVE-2019-13719
CVE-2019-15903
Package : chromium
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-1053

Summary

The package chromium before version 78.0.3904.70-1 is vulnerable to
multiple issues including arbitrary code execution, content spoofing,
access restriction bypass, authentication bypass, denial of service,
information disclosure, privilege escalation and cross-site scripting.

Resolution

Upgrade to 78.0.3904.70-1.

pacman -Syu “chromium>=78.0.3904.70-1”

The problems have been fixed upstream in version 78.0.3904.70.

Workaround

None.

Description

  • CVE-2019-13699 (arbitrary code execution)

A use-after-free issue has been found in the media component of
chromium before 78.0.3904.70.

  • CVE-2019-13700 (arbitrary code execution)

A buffer overrun issue has been found in the Blink component of
chromium before 78.0.3904.70.

  • CVE-2019-13701 (content spoofing)

A URL spoofing issue has been found in chromium before 78.0.3904.70.

  • CVE-2019-13702 (privilege escalation)

A privilege escalation issue has been found in chromium before
78.0.3904.70.

  • CVE-2019-13703 (content spoofing)

A URL bar spoofing issue has been found in chromium before
78.0.3904.70.

  • CVE-2019-13704 (access restriction bypass)

A CSP bypass has been found in chromium before 78.0.3904.70.

  • CVE-2019-13705 (access restriction bypass)

An extension permission bypass has been found in chromium before
78.0.3904.70.

  • CVE-2019-13706 (information disclosure)

An out-of-bounds read has been found in the PDFium component of
chromium before 78.0.3904.70.

  • CVE-2019-13707 (information disclosure)

A file storage disclosure issue has been found in chromium before
78.0.3904.70.

  • CVE-2019-13708 (authentication bypass)

A security issue has been found in chromium before 78.0.3904.70 where
HTTP authentication could be spoofed.

  • CVE-2019-13709 (access restriction bypass)

A security issue has been found in chromium before 78.0.3904.70 where
the file download protection could be bypassed.

  • CVE-2019-13710 (access restriction bypass)

A security issue has been found in chromium before 78.0.3904.70 where
the file download protection could be bypassed.

  • CVE-2019-13711 (information disclosure)

A cross-context information leak has been found in chromium before
78.0.3904.70.

  • CVE-2019-13713 (information disclosure)

A cross-origin data leak has been found in chromium before
78.0.3904.70.

  • CVE-2019-13714 (cross-site scripting)

A CSS injection has been found in chromium before 78.0.3904.70.

  • CVE-2019-13715 (content spoofing)

A security issue has been found in chromium before 78.0.3904.70 where
the content of the address bar could be spoofed.

  • CVE-2019-13716 (denial of service)

A security issue has been found in chromium before 78.0.3904.70 where a
service worker could end up in an invalid state.

  • CVE-2019-13717 (content spoofing)

A security issue has been found in chromium before 78.0.3904.70 where
notifications could be obscured.

  • CVE-2019-13718 (content spoofing)

A security issue has been found in chromium before 78.0.3904.70 where
IDNs could be spoofed.

  • CVE-2019-13719 (content spoofing)

A security issue has been found in chromium before 78.0.3904.70 where
notifications could be obscured.

  • CVE-2019-15903 (denial of service)

A security issue has been found in libexpat before 2.2.8, where crafted
XML input could fool the parser into changing from DTD parsing to
document parsing too early; a consecutive call to
XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted
in a heap-based buffer over-read

Impact

A remote attacker can crash chromium, spoof various parts of the user
interface, bypass security measures, access sensitive information,
elevate privileges or execute arbitrary code.

References

https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_22.html
https://crbug.com/1001503
https://crbug.com/998431
https://crbug.com/998284
https://crbug.com/991125
https://crbug.com/992838
https://crbug.com/1001283
https://crbug.com/989078
https://crbug.com/1001159
https://crbug.com/859349
https://crbug.com/931894
https://crbug.com/1005218
https://crbug.com/756825
https://crbug.com/986063
https://crbug.com/993288
https://crbug.com/982812
https://crbug.com/760855
https://crbug.com/1005948
https://crbug.com/839239
https://crbug.com/866162
https://crbug.com/927150
https://crbug.com/1004341
https://github.com/libexpat/libexpat/issues/317
https://github.com/libexpat/libexpat/pull/318
https://security.archlinux.org/CVE-2019-13699
https://security.archlinux.org/CVE-2019-13700
https://security.archlinux.org/CVE-2019-13701
https://security.archlinux.org/CVE-2019-13702
https://security.archlinux.org/CVE-2019-13703
https://security.archlinux.org/CVE-2019-13704
https://security.archlinux.org/CVE-2019-13705
https://security.archlinux.org/CVE-2019-13706
https://security.archlinux.org/CVE-2019-13707
https://security.archlinux.org/CVE-2019-13708
https://security.archlinux.org/CVE-2019-13709
https://security.archlinux.org/CVE-2019-13710
https://security.archlinux.org/CVE-2019-13711
https://security.archlinux.org/CVE-2019-13713
https://security.archlinux.org/CVE-2019-13714
https://security.archlinux.org/CVE-2019-13715
https://security.archlinux.org/CVE-2019-13716
https://security.archlinux.org/CVE-2019-13717
https://security.archlinux.org/CVE-2019-13718
https://security.archlinux.org/CVE-2019-13719
https://security.archlinux.org/CVE-2019-15903

OSVersionArchitecturePackageVersionFilename
ArchLinuxanyanychromium< 78.0.3904.70-1UNKNOWN

References

Related

openvas 21
suse 7
nessus 25
redhat 1
kaspersky 2
chrome 1
mageia 2
debian 4
gentoo 1
osv 5
debiancve 21
prion 21
redhatcve 21
ubuntucve 21
cve 21
f5 2
fedora 3
ibm 8
slackware 1
freebsd 1
cbl_mariner 1
ubuntu 2
symantec 1
veracode 1
cloudfoundry 1
alpinelinux 1
threatpost 1
amazon 1
altlinux 1
openvas
openvas
Google Chrome Security Updates (stable-channel-update-for-desktop_22-2019-10) - Mac OS X
2019-10-24 00:00:00
Google Chrome Security Updates (stable-channel-update-for-desktop_22-2019-10) - Linux
2019-10-24 00:00:00
openSUSE: Security Advisory for chromium, re2 (openSUSE-SU-2019:2420-1)
2019-11-02 00:00:00
suse
suse
Security update for chromium, re2 (important)
2019-11-03 00:00:00
Security update for chromium, re2 (important)
2019-11-03 00:00:00
Security update for chromium, re2 (important)
2020-01-13 00:00:00
nessus
nessus
Google Chrome < 78.0.3904.70 Multiple Vulnerabilities
2019-10-25 00:00:00
openSUSE Security Update : chromium / re2 (openSUSE-2019-2420)
2019-11-04 00:00:00
Google Chrome < 78.0.3904.70 Multiple Vulnerabilities
2019-10-25 00:00:00
redhat
redhat
(RHSA-2019:3759) Important: chromium-browser security update
2019-11-06 16:11:21
kaspersky
kaspersky
KLA11588 Multiple vulnerabilities in Google Chrome
2019-10-22 00:00:00
KLA11714 Multiple vulnerabilities in Opera
2019-10-30 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2019-10-22 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2019-11-08 02:36:48
Updated expat packages fix security vulnerability
2019-11-08 02:36:48
debian
debian
[SECURITY] [DSA 4562-1] chromium security update
2019-11-10 19:16:43
[SECURITY] [DLA 1912-1] expat security update
2019-09-06 14:21:17
[SECURITY] [DSA 4530-1] expat security update
2019-09-22 07:41:45
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2019-11-25 00:00:00
osv
osv
chromium - security update
2019-11-10 00:00:00
CVE-2019-15903
2019-09-04 06:15:10
expat - security update
2019-09-06 00:00:00
debiancve
debiancve
CVE-2019-13702
2019-11-25 15:15:00
CVE-2019-13707
2019-11-25 15:15:00
CVE-2019-13713
2019-11-25 15:15:00
prion
prion
Input validation
2019-11-25 15:15:00
Design/Logic Flaw
2019-11-25 15:15:00
Design/Logic Flaw
2019-11-25 15:15:00
redhatcve
redhatcve
CVE-2019-13701
2019-10-23 18:05:30
CVE-2019-13703
2019-10-23 18:05:45
CVE-2019-13702
2019-10-23 18:05:43
ubuntucve
ubuntucve
CVE-2019-13705
2019-11-25 00:00:00
CVE-2019-13701
2019-11-25 00:00:00
CVE-2019-13714
2019-11-25 00:00:00
cve
cve
CVE-2019-13705
2019-11-25 15:15:00
CVE-2019-13706
2019-11-25 15:15:00
CVE-2019-13708
2019-11-25 15:15:00
f5
f5
K34239812 : Libexpat vulnerability CVE-2019-15903
2022-08-05 00:00:00
K05295469 : Expat vulnerability CVE-2019-15903
2022-02-03 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: expat-2.2.8-1.fc31
2019-09-21 00:04:26
[SECURITY] Fedora 30 Update: expat-2.2.8-1.fc30
2019-09-25 01:08:45
[SECURITY] Fedora 29 Update: expat-2.2.8-1.fc29
2019-10-02 01:41:36
ibm
ibm
Security Bulletin: IBM Prospect is affected by Expat XML Parser vulnerability (CVE-2019-15903)
2020-06-02 16:38:19
Security Bulletin: A security vulnerability has been disclosed in Expat, which is installed as part of IBM Tivoli Network Manager (CVE-2019-15903).
2020-03-23 12:37:53
Security Bulletin: Security Vulnerability in Expat affects IBM Netezza Analytics
2020-02-11 06:49:33
slackware
slackware
[slackware-security] expat
2019-09-16 21:54:40
freebsd
freebsd
python 3.7 -- multiple vulnerabilities
2019-09-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-15903 affecting package expat 2.2.6-4
2022-01-10 03:59:19
ubuntu
ubuntu
Expat vulnerability
2019-09-12 00:00:00
Expat vulnerability
2019-09-12 00:00:00
symantec
symantec
Libexpat Expat CVE-2019-15903 Heap Buffer Overflow Vulnerability
2019-09-04 00:00:00
veracode
veracode
Denial Of Service (Dos)
2019-09-05 06:48:20
cloudfoundry
cloudfoundry
USN-4132-1: Expat vulnerability | Cloud Foundry
2019-09-30 00:00:00
alpinelinux
alpinelinux
CVE-2019-15903
2019-09-04 06:15:00
threatpost
threatpost
Critical Firefox Bugs Allow Arbitrary Code-Execution
2019-10-23 14:05:13
amazon
amazon
Medium: expat
2020-12-16 20:31:00
altlinux
altlinux
Security fix for the ALT Linux 9 package expat version 2.2.9-alt1
2020-05-31 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.4%

JSON
Related for ASA-201910-17
openvas21suse7nessus25redhat1kaspersky2chrome1mageia2debian4gentoo1osv5debiancve21prion21redhatcve21ubuntucve21cve21f52fedora3ibm8slackware1freebsd1cbl_mariner1ubuntu2symantec1veracode1cloudfoundry1alpinelinux1threatpost1amazon1altlinux1