openSUSE-SU-2019:1557-1

See a problem?

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2019:1557-1.json

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2019:1557-1

Related

Published

2019-06-15T16:34:44Z

Modified

2019-06-15T16:34:44Z

Summary

Security update for chromium

Details

This update for chromium to version 75.0.3770.80 fixes the following issues:

Security issues fixed:

CVE-2019-5828: Fixed a Use after free in ServiceWorker
CVE-2019-5829: Fixed Use after free in Download Manager
CVE-2019-5830: Fixed an incorrectly credentialed requests in CORS
CVE-2019-5831: Fixed an incorrect map processing in V8
CVE-2019-5832: Fixed an incorrect CORS handling in XHR
CVE-2019-5833: Fixed an inconsistent security UI placemen
CVE-2019-5835: Fixed an out of bounds read in Swiftshader
CVE-2019-5836: Fixed a heap buffer overflow in Angle
CVE-2019-5837: Fixed a cross-origin resources size disclosure in Appcache
CVE-2019-5838: Fixed an overly permissive tab access in Extensions
CVE-2019-5839: Fixed an incorrect handling of certain code points in Blink
CVE-2019-5840: Fixed a popup blocker bypass
CVE-2019-5834: Fixed a URL spoof in Omnibox on iOS

References

Affected packages

openSUSE:Leap 15.1 / chromium

Package

Name: chromium
Purl: purl:rpm/suse/chromium&distro=openSUSE%20Leap%2015.1

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

75.0.3770.80-lp151.2.6.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "75.0.3770.80-lp151.2.6.1",
            "chromium": "75.0.3770.80-lp151.2.6.1"
        }
    ]
}