SUSE Package Hub - openSUSE-2016-1292

Update Info

openSUSE-2016-1292

Security update for Chromium

Type: security

Severity: important

Issued: 2016-11-14

Description:

This update to Chromium 54.0.2840.100 fixes the following vulnerabilities:
  
- CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)
- CVE-2016-5200: out of bounds memory access in v8 (boo#1009893)
- CVE-2016-5201: info leak in extensions (boo#1009894)
- CVE-2016-5202: various fixes from internal audits (boo#1009895)

References

CVE: CVE-2016-5202
CVE: CVE-2016-5200
Bugzilla: 1009893 VUL-0: CVE-2016-5200: chromium,v8: out of bounds memory access in v8
Bugzilla: 1009892 VUL-0: CVE-2016-5199: chromium,ffmpeg: heap corruption in ffmpeg
Bugzilla: 1009895 VUL-0: CVE-2016-5202: chromium: various fixes from internal audits
CVE: CVE-2016-5201
Bugzilla: 1009894 VUL-0: CVE-2016-5201: chromium: info leak in extensions
CVE: CVE-2016-5199

Packages

chromium-54.0.2840.100-118.1