SUSE Package Hub - openSUSE-2019-2313

Update Info

openSUSE-2019-2313

Security update for chromium

Type: security

Severity: important

Issued: 2019-10-14

Description:

This update for chromium fixes the following issues:

- Update to 77.0.3865.120 (boo#1153660):
- CVE-2019-13693: Fixed a use-after-free in IndexedDB
- CVE-2019-13694: Fixed a use-after-free in WebRTC
- CVE-2019-13695: Fixed a use-after-free in audio
- CVE-2019-13696: Fixed a use-after-free in V8
- CVE-2019-13697: Fixed a cross-origin size leak. 
- Fixed an issue with the video playback on Intel Kaby Lake and later (boo#1146219).

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

CVE: CVE-2019-13697
CVE: CVE-2019-13696
CVE: CVE-2019-13695
CVE: CVE-2019-13694
CVE: CVE-2019-13693
Bugzilla: 1153660 VUL-0: chromium: multiple security issues fixed in 77.0.3865.120
Bugzilla: 1146219 network:chromium/chromium: Bug - No video playback on Intel Kaby Lake and later

Packages

chromium-77.0.3865.120-bp150.237.1