1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2018-09b59b0227

[FEDORA-2018-09b59b0227] Fedora 27: chromium

Severity Critical
Affected Packages 1
CVEs 25
Info Packages References Vulnerabilities

Update to Chromium 67. Security fix for CVE-2018-6123 CVE-2018-6124
CVE-2018-6125 CVE-2018-6126 CVE-2018-6127 CVE-2018-6128 CVE-2018-6129
CVE-2018-6130 CVE-2018-6131 CVE-2018-6132 CVE-2018-6133 CVE-2018-6134
CVE-2018-6135 CVE-2018-6136 CVE-2018-6137 CVE-2018-6148

Package Affected Version
pkg:rpm/fedora/chromium?distro=fedora-27 < 67.0.3396.79.1.fc27
ID
FEDORA-2018-09b59b0227
Severity
critical
Severity from
CVE-2018-6127
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2018-09b59b0227
Published
2018-06-20T13:55:31
(6 years ago)
Modified
2018-06-20T13:55:31
(6 years ago)
Rights
Copyright 2018 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1584050 Bug #1584050 - CVE-2018-6139 chromium-browser: Restrictions bypass in the debugger extension API https://bugzilla.redhat.com/show_bug.cgi?id=1584050
Bugzilla 1584038 Bug #1584038 - CVE-2018-6128 chromium-browser: uXSS in Chrome on iOS https://bugzilla.redhat.com/show_bug.cgi?id=1584038
Bugzilla 1584057 Bug #1584057 - CVE-2018-6145 chromium-browser: Incorrect escaping of MathML in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584057
Bugzilla 1584033 Bug #1584033 - CVE-2018-6124 chromium-browser: Type confusion in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584033
Bugzilla 1584045 Bug #1584045 - CVE-2018-6134 chromium-browser: Referrer Policy bypass in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584045
Bugzilla 1584056 Bug #1584056 - CVE-2018-6144 chromium-browser: Out of bounds memory access in PDFium https://bugzilla.redhat.com/show_bug.cgi?id=1584056
Bugzilla 1584040 Bug #1584040 - CVE-2018-6130 chromium-browser: Out of bounds memory access in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1584040
Bugzilla 1584054 Bug #1584054 - CVE-2018-6142 chromium-browser: Out of bounds memory access in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1584054
Bugzilla 1584037 Bug #1584037 - CVE-2018-6127 chromium-browser: Use after free in indexedDB https://bugzilla.redhat.com/show_bug.cgi?id=1584037
Bugzilla 1584052 Bug #1584052 - CVE-2018-6141 chromium-browser: Heap buffer overflow in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1584052
Bugzilla 1584048 Bug #1584048 - CVE-2018-6137 chromium-browser: Leak of visited status of page in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584048
Bugzilla 1588379 Bug #1588379 - CVE-2018-6148 chromium-browser: Incorrect handling of CSP header https://bugzilla.redhat.com/show_bug.cgi?id=1588379
Bugzilla 1584049 Bug #1584049 - CVE-2018-6138 chromium-browser: Overly permissive policy in Extensions https://bugzilla.redhat.com/show_bug.cgi?id=1584049
Bugzilla 1584044 Bug #1584044 - CVE-2018-6133 chromium-browser: URL spoof in Omnibox https://bugzilla.redhat.com/show_bug.cgi?id=1584044
Bugzilla 1584055 Bug #1584055 - CVE-2018-6143 chromium-browser: Out of bounds memory access in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1584055
Bugzilla 1584039 Bug #1584039 - CVE-2018-6129 chromium-browser: Out of bounds memory access in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1584039
Bugzilla 1584043 Bug #1584043 - CVE-2018-6132 chromium-browser: Use of uninitialized memory in WebRTC https://bugzilla.redhat.com/show_bug.cgi?id=1584043
Bugzilla 1584046 Bug #1584046 - CVE-2018-6135 chromium-browser: UI spoofing in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584046
Bugzilla 1584034 Bug #1584034 - CVE-2018-6125 chromium-browser: Overly permissive policy in WebUSB https://bugzilla.redhat.com/show_bug.cgi?id=1584034
Bugzilla 1584047 Bug #1584047 - CVE-2018-6136 chromium-browser: Out of bounds memory access in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1584047
Bugzilla 1584032 Bug #1584032 - CVE-2018-6123 chromium-browser: Use after free in Blink https://bugzilla.redhat.com/show_bug.cgi?id=1584032
Bugzilla 1584058 Bug #1584058 - CVE-2018-6147 chromium-browser: Password fields not taking advantage of OS protections in Views https://bugzilla.redhat.com/show_bug.cgi?id=1584058
Bugzilla 1584051 Bug #1584051 - CVE-2018-6140 chromium-browser: Restrictions bypass in the debugger extension API https://bugzilla.redhat.com/show_bug.cgi?id=1584051
Bugzilla 1584042 Bug #1584042 - CVE-2018-6131 chromium-browser: Incorrect mutability protection in WebAssembly https://bugzilla.redhat.com/show_bug.cgi?id=1584042
Bugzilla 1584035 Bug #1584035 - CVE-2018-6126 chromium-browser: Heap buffer overflow in Skia https://bugzilla.redhat.com/show_bug.cgi?id=1584035
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/chromium?distro=fedora-27 fedora chromium < 67.0.3396.79.1.fc27 fedora-27
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date