RHSA-2018:1815-01 -- Redhat chromium-browser, chromium-browser-debuginfoID: oval:org.secpod.oval:def:505549 | Date: (C)2021-01-04 (M)2022-06-24 |
Class: PATCH | Family: unix |
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 67.0.3396.62. Security Fix: * chromium-browser: Use after free in Blink * chromium-browser: Type confusion in Blink * chromium-browser: Overly permissive policy in WebUSB * chromium-browser: Heap buffer overflow in Skia * chromium-browser: Use after free in indexedDB * chromium-browser: Out of bounds memory access in WebRTC * chromium-browser: Out of bounds memory access in WebRTC * chromium-browser: Incorrect mutability protection in WebAssembly * chromium-browser: Use of uninitialized memory in WebRTC * chromium-browser: URL spoof in Omnibox * chromium-browser: Referrer Policy bypass in Blink * chromium-browser: UI spoofing in Blink * chromium-browser: Out of bounds memory access in V8 * chromium-browser: Leak of visited status of page in Blink * chromium-browser: Overly permissive policy in Extensions * chromium-browser: Restrictions bypass in the debugger extension API * chromium-browser: Restrictions bypass in the debugger extension API * chromium-browser: Heap buffer overflow in Skia * chromium-browser: Out of bounds memory access in V8 * chromium-browser: Out of bounds memory access in V8 * chromium-browser: Out of bounds memory access in PDFium * chromium-browser: Incorrect escaping of MathML in Blink * chromium-browser: Password fields not taking advantage of OS protections in Views For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 6 |
Product: |
chromium-browser |
chromium-browser-debuginfo |