openSUSE-SU-2017:1502-1

Import Source

https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2017:1502-1.json

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2017:1502-1

Upstream

CVE-2017-5070

CVE-2017-5071

CVE-2017-5072

CVE-2017-5073

CVE-2017-5074

CVE-2017-5075

CVE-2017-5076

CVE-2017-5077

CVE-2017-5078

CVE-2017-5079

CVE-2017-5080

CVE-2017-5081

CVE-2017-5082

CVE-2017-5083

CVE-2017-5085

CVE-2017-5086

Related

Published

2017-06-07T16:57:03Z

Modified

2026-02-04T02:41:08.624318Z

Summary

Security update for chromium

Details

This update to Chromium 59.0.3071.86 fixes the following security issues:

CVE-2017-5070: Type confusion in V8
CVE-2017-5071: Out of bounds read in V8
CVE-2017-5072: Address spoofing in Omnibox
CVE-2017-5073: Use after free in print preview
CVE-2017-5074: Use after free in Apps Bluetooth
CVE-2017-5075: Information leak in CSP reporting
CVE-2017-5086: Address spoofing in Omnibox
CVE-2017-5076: Address spoofing in Omnibox
CVE-2017-5077: Heap buffer overflow in Skia
CVE-2017-5078: Possible command injection in mailto handling
CVE-2017-5079: UI spoofing in Blink
CVE-2017-5080: Use after free in credit card autofill
CVE-2017-5081: Extension verification bypass
CVE-2017-5082: Insufficient hardening in credit card editor
CVE-2017-5083: UI spoofing in Blink
CVE-2017-5085: Inappropriate javascript execution on WebUI pages

References

Affected packages

SUSE:Package Hub 12 SP2 / chromium

Package

Name: chromium
Purl: pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

59.0.3071.86-20.1

Ecosystem specific

{
    "binaries": [
        {
            "chromium": "59.0.3071.86-20.1",
            "chromedriver": "59.0.3071.86-20.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2017:1502-1.json"