Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.704421
Category:Debian Local Security Checks
Title:Debian Security Advisory DSA 4421-1 (chromium - security update)
Summary:The remote host is missing an update for the 'chromium'; package(s) announced via the DSA-4421-1 advisory.
Description:Summary:
The remote host is missing an update for the 'chromium'
package(s) announced via the DSA-4421-1 advisory.

Vulnerability Insight:
Several vulnerabilities have been discovered in the chromium web browser.

CVE-2019-5787
Zhe Jin discovered a use-after-free issue.

CVE-2019-5788
Mark Brand discovered a use-after-free issue in the FileAPI
implementation.

CVE-2019-5789
Mark Brand discovered a use-after-free issue in the WebMIDI
implementation.

CVE-2019-5790
Dimitri Fourny discovered a buffer overflow issue in the v8 javascript
library.

CVE-2019-5791
Choongwoo Han discovered a type confusion issue in the v8 javascript
library.

CVE-2019-5792
pdknsk discovered an integer overflow issue in the pdfium library.

CVE-2019-5793
Jun Kokatsu discovered a permissions issue in the Extensions
implementation.

CVE-2019-5794
Juno Im of Theori discovered a user interface spoofing issue.

CVE-2019-5795
pdknsk discovered an integer overflow issue in the pdfium library.

CVE-2019-5796
Mark Brand discovered a race condition in the Extensions implementation.

CVE-2019-5797
Mark Brand discovered a race condition in the DOMStorage implementation.

CVE-2019-5798
Tran Tien Hung discovered an out-of-bounds read issue in the skia library.

CVE-2019-5799
sohalt discovered a way to bypass the Content Security Policy.

CVE-2019-5800
Jun Kokatsu discovered a way to bypass the Content Security Policy.

CVE-2019-5802
Ronni Skansing discovered a user interface spoofing issue.

CVE-2019-5803
Andrew Comminos discovered a way to bypass the Content Security Policy.

Affected Software/OS:
'chromium' package(s) on Debian Linux.

Solution:
For the stable distribution (stretch), these problems have been fixed in
version 73.0.3683.75-1~
deb9u1.

We recommend that you upgrade your chromium packages.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-5787
https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html
https://crbug.com/913964
SuSE Security Announcement: openSUSE-SU-2019:1666 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00085.html
Common Vulnerability Exposure (CVE) ID: CVE-2019-5788
https://crbug.com/925864
Common Vulnerability Exposure (CVE) ID: CVE-2019-5789
https://crbug.com/921581
Common Vulnerability Exposure (CVE) ID: CVE-2019-5790
https://crbug.com/914736
Common Vulnerability Exposure (CVE) ID: CVE-2019-5791
https://crbug.com/926651
Common Vulnerability Exposure (CVE) ID: CVE-2019-5792
https://crbug.com/914983
Common Vulnerability Exposure (CVE) ID: CVE-2019-5793
https://crbug.com/937487
Common Vulnerability Exposure (CVE) ID: CVE-2019-5794
https://crbug.com/935175
Common Vulnerability Exposure (CVE) ID: CVE-2019-5795
https://crbug.com/919643
Common Vulnerability Exposure (CVE) ID: CVE-2019-5796
https://crbug.com/918861
Common Vulnerability Exposure (CVE) ID: CVE-2019-5797
Common Vulnerability Exposure (CVE) ID: CVE-2019-5798
Bugtraq: 20190527 [SECURITY] [DSA 4451-1] thunderbird security update (Google Search)
https://seclists.org/bugtraq/2019/May/67
Debian Security Information: DSA-4451 (Google Search)
https://www.debian.org/security/2019/dsa-4451
https://crbug.com/883596
https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html
RedHat Security Advisories: RHSA-2019:1308
https://access.redhat.com/errata/RHSA-2019:1308
RedHat Security Advisories: RHSA-2019:1309
https://access.redhat.com/errata/RHSA-2019:1309
RedHat Security Advisories: RHSA-2019:1310
https://access.redhat.com/errata/RHSA-2019:1310
SuSE Security Announcement: openSUSE-SU-2019:1484 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html
SuSE Security Announcement: openSUSE-SU-2019:1534 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html
SuSE Security Announcement: openSUSE-SU-2019:1664 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html
https://usn.ubuntu.com/3997-1/
Common Vulnerability Exposure (CVE) ID: CVE-2019-5799
https://crbug.com/905301
Common Vulnerability Exposure (CVE) ID: CVE-2019-5800
https://crbug.com/894228
Common Vulnerability Exposure (CVE) ID: CVE-2019-5802
https://crbug.com/632514
Common Vulnerability Exposure (CVE) ID: CVE-2019-5803
https://crbug.com/909865
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.