[RHSA-2019:0708] chromium-browser security update
Chromium is an open-source web browser, powered by WebKit (Blink).
This update upgrades Chromium to version 73.0.3683.75.
Security Fix(es):
chromium-browser: Use after free in Canvas (CVE-2019-5787)
chromium-browser: Use after free in FileAPI (CVE-2019-5788)
chromium-browser: Use after free in WebMIDI (CVE-2019-5789)
chromium-browser: Heap buffer overflow in V8 (CVE-2019-5790)
chromium-browser: Type confusion in V8 (CVE-2019-5791)
chromium-browser: Integer overflow in PDFium (CVE-2019-5792)
chromium-browser: Excessive permissions for private API in Extensions (CVE-2019-5793)
chromium-browser: Security UI spoofing (CVE-2019-5794)
chromium-browser: Integer overflow in PDFium (CVE-2019-5795)
chromium-browser: Race condition in Extensions (CVE-2019-5796)
chromium-browser: Race condition in DOMStorage (CVE-2019-5797)
chromium-browser: Out of bounds read in Skia (CVE-2019-5798)
chromium-browser: CSP bypass with blob URL (CVE-2019-5799)
chromium-browser: CSP bypass with blob URL (CVE-2019-5800)
chromium-browser: Security UI spoofing (CVE-2019-5802)
chromium-browser: CSP bypass with Javascript URLs (CVE-2019-5803)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Package | Affected Version |
---|---|
pkg:rpm/redhat/chromium-browser?arch=x86_64&distro=redhat-6.10 | < 73.0.3683.75-1.el6_10 |
pkg:rpm/redhat/chromium-browser?arch=i686&distro=redhat-6.10 | < 73.0.3683.75-1.el6_10 |
- ID
- RHSA-2019:0708
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2019:0708
- Published
-
2019-04-08T00:00:00
(5 years ago) - Modified
-
2019-04-08T00:00:00
(5 years ago) - Rights
- Copyright 2019 Red Hat, Inc.
- Other Advisories
-
- ALAS2-2019-1229
- ALPINE:CVE-2019-5798
- ASA-201903-8
- ASA-201905-8
- DSA-4421-1
- DSA-4448-1
- DSA-4451-1
- ELSA-2019-1265
- ELSA-2019-1267
- ELSA-2019-1269
- ELSA-2019-1308
- ELSA-2019-1309
- ELSA-2019-1310
- FEDORA-2019-05a780936d
- FEDORA-2019-561eae4626
- GLSA-201903-23
- MFSA-2019-14
- MFSA-2019-15
- openSUSE-SU-2019:1062-1
- openSUSE-SU-2019:1534-1
- openSUSE-SU-2019:1664-1
- openSUSE-SU-2019:1666-1
- RHSA-2019:1265
- RHSA-2019:1267
- RHSA-2019:1269
- RHSA-2019:1308
- RHSA-2019:1309
- RHSA-2019:1310
- SSA:2019-141-01
- SUSE-SU-2019:1458-1
- USN-3997-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/chromium-browser?arch=x86_64&distro=redhat-6.10 | redhat | chromium-browser | < 73.0.3683.75-1.el6_10 | redhat-6.10 | x86_64 | |
Affected | pkg:rpm/redhat/chromium-browser?arch=i686&distro=redhat-6.10 | redhat | chromium-browser | < 73.0.3683.75-1.el6_10 | redhat-6.10 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |