(RHSA-2018:3004) Important: chromium-browser security update

2018-10-25T00:52:49
ID RHSA-2018:3004
Type redhat
Reporter RedHat
Modified 2018-10-25T00:57:50

Description

Chromium is an open-source web browser, powered by WebKit (Blink).

This update upgrades Chromium to version 70.0.3538.67.

Security Fix(es):

  • chromium-browser: Sandbox escape in AppCache (CVE-2018-17462)

  • chromium-browser: Remote code execution in V8 (CVE-2018-17463)

  • chromium-browser: URL spoof in Omnibox (CVE-2018-17464)

  • chromium-browser: Use after free in V8 (CVE-2018-17465)

  • chromium-browser: Memory corruption in Angle (CVE-2018-17466)

  • lcms2: Integer overflow in AllocateDataSet() in cmscgats.c leading to heap-based buffer overflow (CVE-2018-16435)

  • chromium-browser: URL spoof in Omnibox (CVE-2018-17467)

  • chromium-browser: Cross-origin URL disclosure in Blink (CVE-2018-17468)

  • chromium-browser: Heap buffer overflow in PDFium (CVE-2018-17469)

  • chromium-browser: Memory corruption in GPU Internals (CVE-2018-17470)

  • chromium-browser: Security UI occlusion in full screen mode (CVE-2018-17471)

  • chromium-browser: URL spoof in Omnibox (CVE-2018-17473)

  • chromium-browser: Use after free in Blink (CVE-2018-17474)

  • chromium-browser: Lack of limits on update() in ServiceWorker (CVE-2018-5179)

  • chromium-browser: URL spoof in Omnibox (CVE-2018-17475)

  • chromium-browser: Security UI occlusion in full screen mode (CVE-2018-17476)

  • chromium-browser: UI spoof in Extensions (CVE-2018-17477)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.