1. Home
  2. Security Advisories
  3. Gentoo
  4. GLSA-201903-23

[GLSA-201903-23] Chromium: Multiple vulnerabilities

Severity High
Affected Packages 1
Unaffected Packages 1
CVEs 21
Info Packages References Vulnerabilities

Multiple vulnerabilities have been found in Chromium, the worst of which could result in the remote execution of code.

Background
Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all users to experience the web.

Description
Multiple vulnerabilities have been discovered in Chromium and Google
Chrome. Please review the referenced CVE identifiers and Google Chrome
Releases for details.

Impact
Please review the referenced CVE identifiers and Google Chrome Releases
for details.

Workaround
There is no known workaround at this time.

Resolution
All Chromium users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose
">=www-client/chromium-73.0.3683.75"

Package Affected Version
pkg:ebuild/www-client/chromium?distro=gentoo < 73.0.3683.75
Package Unaffected Version
pkg:ebuild/www-client/chromium?distro=gentoo >= 73.0.3683.75
ID
GLSA-201903-23
Severity
high
URL
https://security.gentoo.org/glsa/201903-23
Published
2019-03-28T00:00:00
(5 years ago)
Modified
2019-03-28T00:00:00
(5 years ago)
Rights
Gentoo Foundation, Inc.
Other Advisories
Source # ID Name URL
CVE CVE-2018-17479 CVE-2018-17479 https://nvd.nist.gov/vuln/detail/CVE-2018-17479
CVE CVE-2019-5786 CVE-2019-5786 https://nvd.nist.gov/vuln/detail/CVE-2019-5786
CVE CVE-2019-5786 CVE-2019-5786 https://nvd.nist.gov/vuln/detail/CVE-2019-5786
CVE CVE-2019-5787 CVE-2019-5787 https://nvd.nist.gov/vuln/detail/CVE-2019-5787
CVE CVE-2019-5788 CVE-2019-5788 https://nvd.nist.gov/vuln/detail/CVE-2019-5788
CVE CVE-2019-5789 CVE-2019-5789 https://nvd.nist.gov/vuln/detail/CVE-2019-5789
CVE CVE-2019-5790 CVE-2019-5790 https://nvd.nist.gov/vuln/detail/CVE-2019-5790
CVE CVE-2019-5791 CVE-2019-5791 https://nvd.nist.gov/vuln/detail/CVE-2019-5791
CVE CVE-2019-5792 CVE-2019-5792 https://nvd.nist.gov/vuln/detail/CVE-2019-5792
CVE CVE-2019-5793 CVE-2019-5793 https://nvd.nist.gov/vuln/detail/CVE-2019-5793
CVE CVE-2019-5794 CVE-2019-5794 https://nvd.nist.gov/vuln/detail/CVE-2019-5794
CVE CVE-2019-5795 CVE-2019-5795 https://nvd.nist.gov/vuln/detail/CVE-2019-5795
CVE CVE-2019-5796 CVE-2019-5796 https://nvd.nist.gov/vuln/detail/CVE-2019-5796
CVE CVE-2019-5797 CVE-2019-5797 https://nvd.nist.gov/vuln/detail/CVE-2019-5797
CVE CVE-2019-5798 CVE-2019-5798 https://nvd.nist.gov/vuln/detail/CVE-2019-5798
CVE CVE-2019-5799 CVE-2019-5799 https://nvd.nist.gov/vuln/detail/CVE-2019-5799
CVE CVE-2019-5800 CVE-2019-5800 https://nvd.nist.gov/vuln/detail/CVE-2019-5800
CVE CVE-2019-5801 CVE-2019-5801 https://nvd.nist.gov/vuln/detail/CVE-2019-5801
CVE CVE-2019-5802 CVE-2019-5802 https://nvd.nist.gov/vuln/detail/CVE-2019-5802
CVE CVE-2019-5803 CVE-2019-5803 https://nvd.nist.gov/vuln/detail/CVE-2019-5803
CVE CVE-2019-5804 CVE-2019-5804 https://nvd.nist.gov/vuln/detail/CVE-2019-5804
Bugzilla 671550 Bugzilla #671550 https://bugs.gentoo.org/show_bug.cgi?id=671550
Bugzilla 677066 Bugzilla #677066 https://bugs.gentoo.org/show_bug.cgi?id=677066
Bugzilla 679530 Bugzilla #679530 https://bugs.gentoo.org/show_bug.cgi?id=679530
Bugzilla 680242 Bugzilla #680242 https://bugs.gentoo.org/show_bug.cgi?id=680242
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:ebuild/www-client/chromium?distro=gentoo www-client chromium < 73.0.3683.75 gentoo
Unaffected pkg:ebuild/www-client/chromium?distro=gentoo www-client chromium >= 73.0.3683.75 gentoo
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date