openSUSE-SU-2017:0740-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2017:0740-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2017:0740-1
Related
  • CVE-2017-5029
  • CVE-2017-5030
  • CVE-2017-5031
  • CVE-2017-5032
  • CVE-2017-5033
  • CVE-2017-5034
  • CVE-2017-5035
  • CVE-2017-5036
  • CVE-2017-5037
  • CVE-2017-5038
  • CVE-2017-5039
  • CVE-2017-5040
  • CVE-2017-5041
  • CVE-2017-5042
  • CVE-2017-5043
  • CVE-2017-5044
  • CVE-2017-5045
  • CVE-2017-5046
Published
2017-03-17T20:07:47Z
Modified
2017-03-17T20:07:47Z
Summary
Security update for Chromium
Details

Chromium was updated to 57.0.2987.98 to fix security issues and bugs.

The following vulnerabilities were fixed (bsc#1028848):

  • CVE-2017-5030: Memory corruption in V8
  • CVE-2017-5031: Use after free in ANGLE
  • CVE-2017-5032: Out of bounds write in PDFium
  • CVE-2017-5029: Integer overflow in libxslt
  • CVE-2017-5034: Use after free in PDFium
  • CVE-2017-5035: Incorrect security UI in Omnibox
  • CVE-2017-5036: Use after free in PDFium
  • CVE-2017-5037: Multiple out of bounds writes in ChunkDemuxer
  • CVE-2017-5039: Use after free in PDFium
  • CVE-2017-5040: Information disclosure in V8
  • CVE-2017-5041: Address spoofing in Omnibox
  • CVE-2017-5033: Bypass of Content Security Policy in Blink
  • CVE-2017-5042: Incorrect handling of cookies in Cast
  • CVE-2017-5038: Use after free in GuestView
  • CVE-2017-5043: Use after free in GuestView
  • CVE-2017-5044: Heap overflow in Skia
  • CVE-2017-5045: Information disclosure in XSS Auditor
  • CVE-2017-5046: Information disclosure in Blink

The following non-security changes are included:

  • Address broken rendering on non-intel cards
References

Affected packages

SUSE:Package Hub 12 SP2 / chromium

Package

Name
chromium
Purl
purl:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
57.0.2987.98-8.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "57.0.2987.98-8.1",
            "chromium": "57.0.2987.98-8.1"
        }
    ]
}