[FEDORA-2018-09b59b0227] Fedora 27: chromium
Severity
Critical
Affected Packages
1
CVEs
25
Update to Chromium 67. Security fix for CVE-2018-6123 CVE-2018-6124
CVE-2018-6125 CVE-2018-6126 CVE-2018-6127 CVE-2018-6128 CVE-2018-6129
CVE-2018-6130 CVE-2018-6131 CVE-2018-6132 CVE-2018-6133 CVE-2018-6134
CVE-2018-6135 CVE-2018-6136 CVE-2018-6137 CVE-2018-6148
Package | Affected Version |
---|---|
pkg:rpm/fedora/chromium?distro=fedora-27 | < 67.0.3396.79.1.fc27 |
- ID
- FEDORA-2018-09b59b0227
- Severity
- critical
- Severity from
- CVE-2018-6127
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2018-09b59b0227
- Published
-
2018-06-20T13:55:31
(6 years ago) - Modified
-
2018-06-20T13:55:31
(6 years ago) - Rights
- Copyright 2018 Red Hat, Inc.
- Other Advisories
-
- ALPINE:CVE-2018-6126
- ASA-201806-4
- ASA-201806-5
- DSA-4220-1
- DSA-4237-1
- ELSA-2018-2113
- FEDORA-2018-7c80aaef26
- FREEBSD:427B0F58-644C-11E8-9E1B-E8E0B747A45A
- FREEBSD:4CB49A23-6C89-11E8-8B33-E8E0B747A45A
- GLSA-201810-01
- MFSA-2018-14
- openSUSE-SU-2018:1859-1
- RHSA-2018:1815
- RHSA-2018:1825
- RHSA-2018:2112
- RHSA-2018:2113
- SUSE-SU-2018:1783-1
- SUSE-SU-2018:1783-2
- SUSE-SU-2018:1820-1
- SUSE-SU-2018:2298-1
- USN-3682-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1584050 | Bug #1584050 - CVE-2018-6139 chromium-browser: Restrictions bypass in the debugger extension API | https://bugzilla.redhat.com/show_bug.cgi?id=1584050 |
Bugzilla | 1584038 | Bug #1584038 - CVE-2018-6128 chromium-browser: uXSS in Chrome on iOS | https://bugzilla.redhat.com/show_bug.cgi?id=1584038 |
Bugzilla | 1584057 | Bug #1584057 - CVE-2018-6145 chromium-browser: Incorrect escaping of MathML in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584057 |
Bugzilla | 1584033 | Bug #1584033 - CVE-2018-6124 chromium-browser: Type confusion in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584033 |
Bugzilla | 1584045 | Bug #1584045 - CVE-2018-6134 chromium-browser: Referrer Policy bypass in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584045 |
Bugzilla | 1584056 | Bug #1584056 - CVE-2018-6144 chromium-browser: Out of bounds memory access in PDFium | https://bugzilla.redhat.com/show_bug.cgi?id=1584056 |
Bugzilla | 1584040 | Bug #1584040 - CVE-2018-6130 chromium-browser: Out of bounds memory access in WebRTC | https://bugzilla.redhat.com/show_bug.cgi?id=1584040 |
Bugzilla | 1584054 | Bug #1584054 - CVE-2018-6142 chromium-browser: Out of bounds memory access in V8 | https://bugzilla.redhat.com/show_bug.cgi?id=1584054 |
Bugzilla | 1584037 | Bug #1584037 - CVE-2018-6127 chromium-browser: Use after free in indexedDB | https://bugzilla.redhat.com/show_bug.cgi?id=1584037 |
Bugzilla | 1584052 | Bug #1584052 - CVE-2018-6141 chromium-browser: Heap buffer overflow in Skia | https://bugzilla.redhat.com/show_bug.cgi?id=1584052 |
Bugzilla | 1584048 | Bug #1584048 - CVE-2018-6137 chromium-browser: Leak of visited status of page in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584048 |
Bugzilla | 1588379 | Bug #1588379 - CVE-2018-6148 chromium-browser: Incorrect handling of CSP header | https://bugzilla.redhat.com/show_bug.cgi?id=1588379 |
Bugzilla | 1584049 | Bug #1584049 - CVE-2018-6138 chromium-browser: Overly permissive policy in Extensions | https://bugzilla.redhat.com/show_bug.cgi?id=1584049 |
Bugzilla | 1584044 | Bug #1584044 - CVE-2018-6133 chromium-browser: URL spoof in Omnibox | https://bugzilla.redhat.com/show_bug.cgi?id=1584044 |
Bugzilla | 1584055 | Bug #1584055 - CVE-2018-6143 chromium-browser: Out of bounds memory access in V8 | https://bugzilla.redhat.com/show_bug.cgi?id=1584055 |
Bugzilla | 1584039 | Bug #1584039 - CVE-2018-6129 chromium-browser: Out of bounds memory access in WebRTC | https://bugzilla.redhat.com/show_bug.cgi?id=1584039 |
Bugzilla | 1584043 | Bug #1584043 - CVE-2018-6132 chromium-browser: Use of uninitialized memory in WebRTC | https://bugzilla.redhat.com/show_bug.cgi?id=1584043 |
Bugzilla | 1584046 | Bug #1584046 - CVE-2018-6135 chromium-browser: UI spoofing in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584046 |
Bugzilla | 1584034 | Bug #1584034 - CVE-2018-6125 chromium-browser: Overly permissive policy in WebUSB | https://bugzilla.redhat.com/show_bug.cgi?id=1584034 |
Bugzilla | 1584047 | Bug #1584047 - CVE-2018-6136 chromium-browser: Out of bounds memory access in V8 | https://bugzilla.redhat.com/show_bug.cgi?id=1584047 |
Bugzilla | 1584032 | Bug #1584032 - CVE-2018-6123 chromium-browser: Use after free in Blink | https://bugzilla.redhat.com/show_bug.cgi?id=1584032 |
Bugzilla | 1584058 | Bug #1584058 - CVE-2018-6147 chromium-browser: Password fields not taking advantage of OS protections in Views | https://bugzilla.redhat.com/show_bug.cgi?id=1584058 |
Bugzilla | 1584051 | Bug #1584051 - CVE-2018-6140 chromium-browser: Restrictions bypass in the debugger extension API | https://bugzilla.redhat.com/show_bug.cgi?id=1584051 |
Bugzilla | 1584042 | Bug #1584042 - CVE-2018-6131 chromium-browser: Incorrect mutability protection in WebAssembly | https://bugzilla.redhat.com/show_bug.cgi?id=1584042 |
Bugzilla | 1584035 | Bug #1584035 - CVE-2018-6126 chromium-browser: Heap buffer overflow in Skia | https://bugzilla.redhat.com/show_bug.cgi?id=1584035 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/chromium?distro=fedora-27 | fedora | chromium | < 67.0.3396.79.1.fc27 | fedora-27 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |