Chromium is an open-source web browser, powered by WebKit (Blink).
This update upgrades Chromium to version 70.0.3538.67.
Security Fix(es):
chromium-browser: Sandbox escape in AppCache (CVE-2018-17462)
chromium-browser: Remote code execution in V8 (CVE-2018-17463)
chromium-browser: URL spoof in Omnibox (CVE-2018-17464)
chromium-browser: Use after free in V8 (CVE-2018-17465)
chromium-browser: Memory corruption in Angle (CVE-2018-17466)
lcms2: Integer overflow in AllocateDataSet() in cmscgats.c leading to heap-based buffer overflow (CVE-2018-16435)
chromium-browser: URL spoof in Omnibox (CVE-2018-17467)
chromium-browser: Cross-origin URL disclosure in Blink (CVE-2018-17468)
chromium-browser: Heap buffer overflow in PDFium (CVE-2018-17469)
chromium-browser: Memory corruption in GPU Internals (CVE-2018-17470)
chromium-browser: Security UI occlusion in full screen mode (CVE-2018-17471)
chromium-browser: URL spoof in Omnibox (CVE-2018-17473)
chromium-browser: Use after free in Blink (CVE-2018-17474)
chromium-browser: Lack of limits on update() in ServiceWorker (CVE-2018-5179)
chromium-browser: URL spoof in Omnibox (CVE-2018-17475)
chromium-browser: Security UI occlusion in full screen mode (CVE-2018-17476)
chromium-browser: UI spoof in Extensions (CVE-2018-17477)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | x86_64 | chromium-browser | < 70.0.3538.67-1.el6_10 | chromium-browser-70.0.3538.67-1.el6_10.x86_64.rpm |
RedHat | 6 | i686 | chromium-browser-debuginfo | < 70.0.3538.67-1.el6_10 | chromium-browser-debuginfo-70.0.3538.67-1.el6_10.i686.rpm |
RedHat | 6 | x86_64 | chromium-browser-debuginfo | < 70.0.3538.67-1.el6_10 | chromium-browser-debuginfo-70.0.3538.67-1.el6_10.x86_64.rpm |
RedHat | 6 | i686 | chromium-browser | < 70.0.3538.67-1.el6_10 | chromium-browser-70.0.3538.67-1.el6_10.i686.rpm |