SUSE Package Hub - openSUSE-2017-661

Update Info

openSUSE-2017-661

Security update for chromium

Type: security

Severity: important

Issued: 2017-06-07

Description:

This update to Chromium 59.0.3071.86 fixes the following security issues:

- CVE-2017-5070: Type confusion in V8
- CVE-2017-5071: Out of bounds read in V8
- CVE-2017-5072: Address spoofing in Omnibox
- CVE-2017-5073: Use after free in print preview
- CVE-2017-5074: Use after free in Apps Bluetooth
- CVE-2017-5075: Information leak in CSP reporting
- CVE-2017-5086: Address spoofing in Omnibox
- CVE-2017-5076: Address spoofing in Omnibox
- CVE-2017-5077: Heap buffer overflow in Skia
- CVE-2017-5078: Possible command injection in mailto handling
- CVE-2017-5079: UI spoofing in Blink
- CVE-2017-5080: Use after free in credit card autofill
- CVE-2017-5081: Extension verification bypass
- CVE-2017-5082: Insufficient hardening in credit card editor
- CVE-2017-5083: UI spoofing in Blink
- CVE-2017-5085: Inappropriate javascript execution on WebUI pages

References

CVE: CVE-2017-5086
CVE: CVE-2017-5085
CVE: CVE-2017-5083
CVE: CVE-2017-5082
CVE: CVE-2017-5081
CVE: CVE-2017-5080
CVE: CVE-2017-5079
CVE: CVE-2017-5078
CVE: CVE-2017-5077
CVE: CVE-2017-5076
CVE: CVE-2017-5075
CVE: CVE-2017-5074
CVE: CVE-2017-5073
CVE: CVE-2017-5072
CVE: CVE-2017-5071
CVE: CVE-2017-5070
Bugzilla: 1042833 VUL-0: Chromium 59.0.3071.86 stable security bump

Packages

chromium-59.0.3071.86-20.1