RHSA-2018:2666-01 -- Redhat chromium-browser, chromium-browser-debuginfoID: oval:org.secpod.oval:def:505412 | Date: (C)2021-01-04 (M)2022-06-24 |
Class: PATCH | Family: unix |
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 69.0.3497.81. Security Fix: * chromium-browser: Out of bounds write in V8 * chromium-browser: Out of bounds read in Blink * chromium-browser: Out of bounds read in WebAudio * chromium-browser: Out of bounds write in Mojo * chromium-browser: Out of bounds read in SwiftShader * chromium-browser: Integer overflow in Skia * chromium-browser: Use after free in WebRTC * chromium-browser: Site Isolation bypass after tab restore * chromium-browser: Site Isolation bypass using Blob URLS * chromium-browser: Local file access in Blink * chromium-browser: Out of bounds read in PDFium * chromium-browser: Content security policy bypass in Blink * chromium-browser: Credit card information leak in Autofill * chromium-browser: URL spoof in permission dialogs * chromium-browser: URL spoof in full screen mode * chromium-browser: Local file access in DevTools * chromium-browser: Stack buffer overflow in SwiftShader * chromium-browser: Out of bounds read in WebRTC * chromium-browser: User confirmation bypass in external protocol handling * chromium-browser: Use after free in Memory Instrumentation * chromium-browser: Script injection in New Tab Page * chromium-browser: Multiple download restriction bypass * chromium-browser: User gesture requirement bypass For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 6 |
Product: |
chromium-browser |
chromium-browser-debuginfo |