Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2016-0279)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2016.0279

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2016-0279)

Resumen: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2016-0279 advisory.

Descripción: Summary:
The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2016-0279 advisory.

Vulnerability Insight:
Chromium-browser-stable 52.0.2743.116 fixes security issues: two heap
overflow issues in pdfium (CVE-2016-5139 and CVE-2016-5140), an address
bar spoofing problem (CVE-2016-5141), a use-after-free bug (CVE-2016-5142)
and a same origin bypass problem (CVE-2016-5145) in blink, two parameter
sanitization failures in DevTools (CVE-2016-5143 and CVE-2016-5144), and
various fixes from upstream's internal audits, fuzzing, and other
initiatives (CVE-2016-5146).

Affected Software/OS:
'chromium-browser-stable' package(s) on Mageia 5.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-5139
BugTraq ID: 92276
http://www.securityfocus.com/bid/92276
Debian Security Information: DSA-3645 (Google Search)
http://www.debian.org/security/2016/dsa-3645
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4KMX62M7UNRLWO4FEQ6YIMPMTKXXJV6A/
https://security.gentoo.org/glsa/201610-09
https://lists.debian.org/debian-lts-announce/2018/07/msg00025.html
RedHat Security Advisories: RHSA-2016:1580
http://rhn.redhat.com/errata/RHSA-2016-1580.html
RedHat Security Advisories: RHSA-2017:0559
http://rhn.redhat.com/errata/RHSA-2017-0559.html
RedHat Security Advisories: RHSA-2017:0838
http://rhn.redhat.com/errata/RHSA-2017-0838.html
http://www.securitytracker.com/id/1036547
SuSE Security Announcement: openSUSE-SU-2016:1982 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00005.html
SuSE Security Announcement: openSUSE-SU-2016:1983 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00006.html
Common Vulnerability Exposure (CVE) ID: CVE-2016-5140
Common Vulnerability Exposure (CVE) ID: CVE-2016-5141
Common Vulnerability Exposure (CVE) ID: CVE-2016-5142
Common Vulnerability Exposure (CVE) ID: CVE-2016-5143
Common Vulnerability Exposure (CVE) ID: CVE-2016-5144
Common Vulnerability Exposure (CVE) ID: CVE-2016-5145
Common Vulnerability Exposure (CVE) ID: CVE-2016-5146

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2016.0279
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2016-0279)
Resumen:	The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2016-0279 advisory.
Descripción:	Summary: The remote host is missing an update for the 'chromium-browser-stable' package(s) announced via the MGASA-2016-0279 advisory. Vulnerability Insight: Chromium-browser-stable 52.0.2743.116 fixes security issues: two heap overflow issues in pdfium (CVE-2016-5139 and CVE-2016-5140), an address bar spoofing problem (CVE-2016-5141), a use-after-free bug (CVE-2016-5142) and a same origin bypass problem (CVE-2016-5145) in blink, two parameter sanitization failures in DevTools (CVE-2016-5143 and CVE-2016-5144), and various fixes from upstream's internal audits, fuzzing, and other initiatives (CVE-2016-5146). Affected Software/OS: 'chromium-browser-stable' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-5139 BugTraq ID: 92276 http://www.securityfocus.com/bid/92276 Debian Security Information: DSA-3645 (Google Search) http://www.debian.org/security/2016/dsa-3645 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4KMX62M7UNRLWO4FEQ6YIMPMTKXXJV6A/ https://security.gentoo.org/glsa/201610-09 https://lists.debian.org/debian-lts-announce/2018/07/msg00025.html RedHat Security Advisories: RHSA-2016:1580 http://rhn.redhat.com/errata/RHSA-2016-1580.html RedHat Security Advisories: RHSA-2017:0559 http://rhn.redhat.com/errata/RHSA-2017-0559.html RedHat Security Advisories: RHSA-2017:0838 http://rhn.redhat.com/errata/RHSA-2017-0838.html http://www.securitytracker.com/id/1036547 SuSE Security Announcement: openSUSE-SU-2016:1982 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00005.html SuSE Security Announcement: openSUSE-SU-2016:1983 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00006.html Common Vulnerability Exposure (CVE) ID: CVE-2016-5140 Common Vulnerability Exposure (CVE) ID: CVE-2016-5141 Common Vulnerability Exposure (CVE) ID: CVE-2016-5142 Common Vulnerability Exposure (CVE) ID: CVE-2016-5143 Common Vulnerability Exposure (CVE) ID: CVE-2016-5144 Common Vulnerability Exposure (CVE) ID: CVE-2016-5145 Common Vulnerability Exposure (CVE) ID: CVE-2016-5146
Copyright	Copyright (C) 2022 Greenbone AG