Security update for chromium (important)


This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-15408: Heap buffer overflow in PDFium - CVE-2017-15409: Out of bounds write in Skia - CVE-2017-15410: Use after free in PDFium - CVE-2017-15411: Use after free in PDFium - CVE-2017-15412: Use after free in libXML - CVE-2017-15413: Type confusion in WebAssembly - CVE-2017-15415: Pointer information disclosure in IPC call - CVE-2017-15416: Out of bounds read in Blink - CVE-2017-15417: Cross origin information disclosure in Skia - CVE-2017-15418: Use of uninitialized value in Skia - CVE-2017-15419: Cross origin leak of redirect URL in Blink - CVE-2017-15420: URL spoofing in Omnibox - CVE-2017-15422: Integer overflow in ICU - CVE-2017-15423: Issue with SPAKE implementation in BoringSSL - CVE-2017-15424: URL Spoof in Omnibox - CVE-2017-15425: URL Spoof in Omnibox - CVE-2017-15426: URL Spoof in Omnibox - CVE-2017-15427: Insufficient blocking of JavaScript in Omnibox

Affected Package

OS OS Version Package Name Package Version
openSUSE Leap 42.3 chromedriver-debuginfo 63.0.3239.84-127.1
openSUSE Leap 42.3 chromium 63.0.3239.84-127.1
openSUSE Leap 42.2 chromium-debugsource 63.0.3239.84-104.41.1
openSUSE Leap 42.2 chromedriver-debuginfo 63.0.3239.84-104.41.1
openSUSE Leap 42.3 chromedriver 63.0.3239.84-127.1
openSUSE Leap 42.3 chromium-debuginfo 63.0.3239.84-127.1
openSUSE Leap 42.2 chromium-debuginfo 63.0.3239.84-104.41.1
openSUSE Leap 42.3 chromium-debugsource 63.0.3239.84-127.1
openSUSE Leap 42.2 chromium 63.0.3239.84-104.41.1
openSUSE Leap 42.2 chromedriver 63.0.3239.84-104.41.1