Lucene search
SuseOPENSUSE-SU-2018:0704-1HistoryMar 16, 2018 - 12:07 p.m.
Security update for Chromium (important)
2018-03-1612:07:04
lists.opensuse.org
327
0.904 High
EPSS
Percentile
98.5%
This update for Chromium to version 65.0.3325.162 fixes the following
issues:
- CVE-2017-11215: Use after free in Flash
- CVE-2017-11225: Use after free in Flash
- CVE-2018-6060: Use after free in Blink
- CVE-2018-6061: Race condition in V8
- CVE-2018-6062: Heap buffer overflow in Skia
- CVE-2018-6057: Incorrect permissions on shared memory
- CVE-2018-6063: Incorrect permissions on shared memory
- CVE-2018-6064: Type confusion in V8
- CVE-2018-6065: Integer overflow in V8
- CVE-2018-6066: Same Origin Bypass via canvas
- CVE-2018-6067: Buffer overflow in Skia
- CVE-2018-6068: Object lifecycle issues in Chrome Custom Tab
- CVE-2018-6069: Stack buffer overflow in Skia
- CVE-2018-6070: CSP bypass through extensions
- CVE-2018-6071: Heap bufffer overflow in Skia
- CVE-2018-6072: Integer overflow in PDFium
- CVE-2018-6073: Heap bufffer overflow in WebGL
- CVE-2018-6074: Mark-of-the-Web bypass
- CVE-2018-6075: Overly permissive cross origin downloads
- CVE-2018-6076: Incorrect handling of URL fragment identifiers in Blink
- CVE-2018-6077: Timing attack using SVG filters
- CVE-2018-6078: URL Spoof in OmniBox
- CVE-2018-6079: Information disclosure via texture data in WebGL
- CVE-2018-6080: Information disclosure in IPC call
- CVE-2018-6081: XSS in interstitials
- CVE-2018-6082: Circumvention of port blocking
- CVE-2018-6083: Incorrect processing of AppManifests
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.3 | x86_64 | chromium-debugsource | < 65.0.3325.162-146.1 | chromium-debugsource-65.0.3325.162-146.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | chromium | < 65.0.3325.162-146.1 | chromium-65.0.3325.162-146.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | chromium-debuginfo | < 65.0.3325.162-146.1 | chromium-debuginfo-65.0.3325.162-146.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | chromedriver | < 65.0.3325.162-146.1 | chromedriver-65.0.3325.162-146.1.x86_64.rpm |
| openSUSE Leap | 42.3 | x86_64 | chromedriver-debuginfo | < 65.0.3325.162-146.1 | chromedriver-debuginfo-65.0.3325.162-146.1.x86_64.rpm |
References
Related
nessus
nessus
Google Chrome < 65.0.3325.146 Multiple Vulnerabilities
2018-03-08 00:00:00
openSUSE Security Update : Chromium (openSUSE-2018-264)
2018-03-19 00:00:00
RHEL 6 : chromium-browser (RHSA-2018:0484)
2018-03-13 00:00:00
freebsd
freebsd
chromium -- vulnerability
2016-05-03 00:00:00
Flash Player -- multiple vulnerabilities
2017-11-14 00:00:00
openvas
openvas
openSUSE: Security Advisory for Chromium (openSUSE-SU-2018:0704-1)
2018-03-17 00:00:00
Google Chrome Multiple Security Vulnerabilities (Mar 2018) - Linux
2018-03-07 00:00:00
Google Chrome Multiple Security Vulnerabilities (Mar 2018) - Mac OS X
2018-03-07 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2018-03-06 00:00:00
redhat
redhat
(RHSA-2018:0484) Important: chromium-browser security update
2018-03-12 17:29:32
(RHSA-2017:3222) Critical: flash-plugin security update
2017-11-15 10:26:05
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2018-03-13 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2017-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: qt5-qtwebengine-5.10.1-4.fc26
2018-03-25 21:24:23
[SECURITY] Fedora 28 Update: qt5-qtwebengine-5.10.1-4.fc28
2018-03-26 22:32:32
[SECURITY] Fedora 27 Update: qt5-qtwebengine-5.10.1-4.fc27
2018-03-25 21:49:26
suse
suse
Security update for Chromium (important)
2018-05-09 15:07:28
Security update for Chromium (important)
2018-05-27 18:06:43
osv
osv
chromium-browser - security update
2018-04-28 00:00:00
debian
debian
[SECURITY] [DSA 4182-1] chromium-browser security update
2018-04-28 05:30:48
[SECURITY] [DSA 4182-1] chromium-browser security update
2018-04-28 05:30:48
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerabilities
2018-06-04 18:11:47
Updated flash-player-plugin packages fixes security vulnerabilities
2017-11-16 10:39:32
redhatcve
redhatcve
archlinux
archlinux
[ASA-201711-22] lib32-flashplugin: arbitrary code execution
2017-11-15 00:00:00
[ASA-201711-21] flashplugin: arbitrary code execution
2017-11-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free (APSB17-33: CVE-2017-11225)
2017-11-14 00:00:00
Adobe Flash Player Use After Free (APSB17-33: CVE-2017-11215)
2017-11-14 00:00:00
Google Chrome Integer Overflow Command Execution (CVE-2018-6065)
2018-05-07 00:00:00
mscve
mscve
November 2017 Adobe Flash Security Update
2017-11-14 08:00:00
threatpost
threatpost
Adobe Patches Flash Player, 56 Bugs in Reader and Acrobat
2017-11-14 12:14:00
prion
prion
Code injection
2018-11-14 15:29:00
Integer overflow
2018-11-14 15:29:00
Design/Logic Flaw
2017-12-09 06:29:00
debiancve
debiancve
ubuntucve
ubuntucve
attackerkb
attackerkb
CVE-2018-6065
2018-11-14 00:00:00
cve
cve
zdi
zdi
cisa_kev
cisa_kev
Google Chromium V8 Integer Overflow Vulnerability
2022-06-08 00:00:00
seebug
seebug
zdt
zdt
Google Chrome V8 - Object Allocation Size Integer Overflow Exploit
2018-05-04 00:00:00
packetstorm
packetstorm
Chrome V8 ElementsAccessorBase::CollectValuesOrEntriesImpl Type Confusion
2018-04-03 00:00:00