Test ID:	1.3.6.1.4.1.25623.1.0.703810
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-3810-1)
Summary:	The remote host is missing an update for the Debian 'chromium-browser' package(s) announced via the DSA-3810-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'chromium-browser' package(s) announced via the DSA-3810-1 advisory. Vulnerability Insight: Several vulnerabilities have been discovered in the chromium web browser. CVE-2017-5029 Holger Fuhrmannek discovered an integer overflow issue in the libxslt library. CVE-2017-5030 Brendon Tiszka discovered a memory corruption issue in the v8 javascript library. CVE-2017-5031 Looben Yang discovered a use-after-free issue in the ANGLE library. CVE-2017-5032 Ashfaq Ansari discovered an out-of-bounds write in the pdfium library. CVE-2017-5033 Nicolai Grodum discovered a way to bypass the Content Security Policy. CVE-2017-5034 Ke Liu discovered an integer overflow issue in the pdfium library. CVE-2017-5035 Enzo Aguado discovered an issue with the omnibox. CVE-2017-5036 A use-after-free issue was discovered in the pdfium library. CVE-2017-5037 Yongke Wang discovered multiple out-of-bounds write issues. CVE-2017-5038 A use-after-free issue was discovered in the guest view. CVE-2017-5039 jinmo123 discovered a use-after-free issue in the pdfium library. CVE-2017-5040 Choongwoo Han discovered an information disclosure issue in the v8 javascript library. CVE-2017-5041 Jordi Chancel discovered an address spoofing issue. CVE-2017-5042 Mike Ruddy discovered incorrect handling of cookies. CVE-2017-5043 Another use-after-free issue was discovered in the guest view. CVE-2017-5044 Kushal Arvind Shah discovered a heap overflow issue in the skia library. CVE-2017-5045 Dhaval Kapil discovered an information disclosure issue. CVE-2017-5046 Masato Kinugawa discovered an information disclosure issue. For the stable distribution (jessie), these problems have been fixed in version 57.0.2987.98-1~ deb8u1. For the upcoming stable (stretch) and unstable (sid) distributions, these problems have been fixed in version 57.0.2987.98-1. We recommend that you upgrade your chromium-browser packages. Affected Software/OS: 'chromium-browser' package(s) on Debian 8. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-5029 BugTraq ID: 96767 http://www.securityfocus.com/bid/96767 Debian Security Information: DSA-3810 (Google Search) http://www.debian.org/security/2017/dsa-3810 RedHat Security Advisories: RHSA-2017:0499 http://rhn.redhat.com/errata/RHSA-2017-0499.html http://www.securitytracker.com/id/1038157 Common Vulnerability Exposure (CVE) ID: CVE-2017-5030 https://security.gentoo.org/glsa/201704-02 https://www.zerodayinitiative.com/advisories/ZDI-20-126/ Common Vulnerability Exposure (CVE) ID: CVE-2017-5031 BugTraq ID: 98326 http://www.securityfocus.com/bid/98326 Common Vulnerability Exposure (CVE) ID: CVE-2017-5032 Common Vulnerability Exposure (CVE) ID: CVE-2017-5033 https://twitter.com/Ma7h1as/status/907641276434063361 Common Vulnerability Exposure (CVE) ID: CVE-2017-5034 Common Vulnerability Exposure (CVE) ID: CVE-2017-5035 Common Vulnerability Exposure (CVE) ID: CVE-2017-5036 Common Vulnerability Exposure (CVE) ID: CVE-2017-5037 Common Vulnerability Exposure (CVE) ID: CVE-2017-5038 Common Vulnerability Exposure (CVE) ID: CVE-2017-5039 Common Vulnerability Exposure (CVE) ID: CVE-2017-5040 Common Vulnerability Exposure (CVE) ID: CVE-2017-5041 Common Vulnerability Exposure (CVE) ID: CVE-2017-5042 Common Vulnerability Exposure (CVE) ID: CVE-2017-5043 Common Vulnerability Exposure (CVE) ID: CVE-2017-5044 Common Vulnerability Exposure (CVE) ID: CVE-2017-5045 Common Vulnerability Exposure (CVE) ID: CVE-2017-5046
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.