openSUSE-SU-2019:1558-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2019:1558-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2019:1558-1
Related
Published
2019-06-15T16:35:31Z
Modified
2019-06-15T16:35:31Z
Summary
Security update for chromium
Details

This update for chromium to version 75.0.3770.80 fixes the following issues:

Security issues fixed:

  • CVE-2019-5828: Fixed a Use after free in ServiceWorker
  • CVE-2019-5829: Fixed Use after free in Download Manager
  • CVE-2019-5830: Fixed an incorrectly credentialed requests in CORS
  • CVE-2019-5831: Fixed an incorrect map processing in V8
  • CVE-2019-5832: Fixed an incorrect CORS handling in XHR
  • CVE-2019-5833: Fixed an inconsistent security UI placemen
  • CVE-2019-5835: Fixed an out of bounds read in Swiftshader
  • CVE-2019-5836: Fixed a heap buffer overflow in Angle
  • CVE-2019-5837: Fixed a cross-origin resources size disclosure in Appcache
  • CVE-2019-5838: Fixed an overly permissive tab access in Extensions
  • CVE-2019-5839: Fixed an incorrect handling of certain code points in Blink
  • CVE-2019-5840: Fixed a popup blocker bypass
References

Affected packages

openSUSE:Leap 15.0 / chromium

Package

Name
chromium
Purl
pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
75.0.3770.80-lp150.215.1

Ecosystem specific

{
    "binaries": [
        {
            "chromedriver": "75.0.3770.80-lp150.215.1",
            "chromium": "75.0.3770.80-lp150.215.1"
        }
    ]
}