Test ID:	1.3.6.1.4.1.25623.1.0.704562
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-4562-1)
Summary:	The remote host is missing an update for the Debian 'chromium' package(s) announced via the DSA-4562-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'chromium' package(s) announced via the DSA-4562-1 advisory. Vulnerability Insight: Several vulnerabilities have been discovered in the chromium web browser. CVE-2019-5869 Zhe Jin discovered a use-after-free issue. CVE-2019-5870 Guang Gong discovered a use-after-free issue. CVE-2019-5871 A buffer overflow issue was discovered in the skia library. CVE-2019-5872 Zhe Jin discovered a use-after-free issue. CVE-2019-5874 James Lee discovered an issue with external Uniform Resource Identifiers. CVE-2019-5875 Khalil Zhani discovered a URL spoofing issue. CVE-2019-5876 Man Yue Mo discovered a use-after-free issue. CVE-2019-5877 Guang Gong discovered an out-of-bounds read issue. CVE-2019-5878 Guang Gong discovered an use-after-free issue in the v8 javascript library. CVE-2019-5879 Jinseo Kim discover that extensions could read files on the local system. CVE-2019-5880 Jun Kokatsu discovered a way to bypass the SameSite cookie feature. CVE-2019-13659 Lnyas Zhang discovered a URL spoofing issue. CVE-2019-13660 Wenxu Wu discovered a user interface error in full screen mode. CVE-2019-13661 Wenxu Wu discovered a user interface spoofing issue in full screen mode. CVE-2019-13662 David Erceg discovered a way to bypass the Content Security Policy. CVE-2019-13663 Lnyas Zhang discovered a way to spoof Internationalized Domain Names. CVE-2019-13664 Thomas Shadwell discovered a way to bypass the SameSite cookie feature. CVE-2019-13665 Jun Kokatsu discovered a way to bypass the multiple file download protection feature. CVE-2019-13666 Tom Van Goethem discovered an information leak. CVE-2019-13667 Khalil Zhani discovered a URL spoofing issue. CVE-2019-13668 David Erceg discovered an information leak. CVE-2019-13669 Khalil Zhani discovered an authentication spoofing issue. CVE-2019-13670 Guang Gong discovered a memory corruption issue in the v8 javascript library. CVE-2019-13671 xisigr discovered a user interface error. CVE-2019-13673 David Erceg discovered an information leak. CVE-2019-13674 Khalil Zhani discovered a way to spoof Internationalized Domain Names. CVE-2019-13675 Jun Kokatsu discovered a way to disable extensions. CVE-2019-13676 Wenxu Wu discovered an error in a certificate warning. CVE-2019-13677 Jun Kokatsu discovered an error in the chrome web store. CVE-2019-13678 Ronni Skansing discovered a spoofing issue in the download dialog window. CVE-2019-13679 Conrad Irwin discovered that user activation was not required for printing. CVE-2019-13680 Thijs Alkamade discovered an IP address spoofing issue. CVE-2019-13681 David Erceg discovered a way to bypass download restrictions. CVE-2019-13682 Jun Kokatsu discovered a way to bypass the site isolation feature. CVE-2019-13683 David Erceg discovered an information leak. CVE-2019-13685 Khalil Zhani discovered a use-after-free issue. CVE-2019-13686 Brendon discovered a use-after-free issue. CVE-2019-13687 Man Yue Mo discovered a use-after-free ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'chromium' package(s) on Debian 10. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-13659 https://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop.html https://crbug.com/868846 Common Vulnerability Exposure (CVE) ID: CVE-2019-13660 https://crbug.com/882363 Common Vulnerability Exposure (CVE) ID: CVE-2019-13661 https://crbug.com/882812 Common Vulnerability Exposure (CVE) ID: CVE-2019-13662 https://crbug.com/967780 Common Vulnerability Exposure (CVE) ID: CVE-2019-13663 https://crbug.com/863661 Common Vulnerability Exposure (CVE) ID: CVE-2019-13664 https://crbug.com/915538 Common Vulnerability Exposure (CVE) ID: CVE-2019-13665 https://crbug.com/959640 Common Vulnerability Exposure (CVE) ID: CVE-2019-13666 https://crbug.com/960305 Common Vulnerability Exposure (CVE) ID: CVE-2019-13667 https://crbug.com/973056 Common Vulnerability Exposure (CVE) ID: CVE-2019-13668 https://crbug.com/986393 Common Vulnerability Exposure (CVE) ID: CVE-2019-13669 https://crbug.com/968451 Common Vulnerability Exposure (CVE) ID: CVE-2019-13670 https://crbug.com/980891 Common Vulnerability Exposure (CVE) ID: CVE-2019-13671 https://crbug.com/696454 Common Vulnerability Exposure (CVE) ID: CVE-2019-13672 https://crbug.com/965067 Common Vulnerability Exposure (CVE) ID: CVE-2019-13673 https://crbug.com/997925 Common Vulnerability Exposure (CVE) ID: CVE-2019-13674 https://crbug.com/896533 Common Vulnerability Exposure (CVE) ID: CVE-2019-13675 https://crbug.com/929578 Common Vulnerability Exposure (CVE) ID: CVE-2019-13676 https://crbug.com/875178 Common Vulnerability Exposure (CVE) ID: CVE-2019-13677 https://crbug.com/939108 Common Vulnerability Exposure (CVE) ID: CVE-2019-13678 https://crbug.com/946633 Common Vulnerability Exposure (CVE) ID: CVE-2019-13679 https://crbug.com/968914 Common Vulnerability Exposure (CVE) ID: CVE-2019-13680 https://crbug.com/969684 Common Vulnerability Exposure (CVE) ID: CVE-2019-13681 https://crbug.com/970378 Common Vulnerability Exposure (CVE) ID: CVE-2019-13682 https://crbug.com/971917 Common Vulnerability Exposure (CVE) ID: CVE-2019-13683 https://crbug.com/987502 Common Vulnerability Exposure (CVE) ID: CVE-2019-13685 https://chromereleases.googleblog.com/2019/09/stable-channel-update-for-desktop_18.html https://crbug.com/1000934 Common Vulnerability Exposure (CVE) ID: CVE-2019-13686 https://crbug.com/1000002 Common Vulnerability Exposure (CVE) ID: CVE-2019-13687 https://crbug.com/998548 Common Vulnerability Exposure (CVE) ID: CVE-2019-13688 https://crbug.com/995964 Common Vulnerability Exposure (CVE) ID: CVE-2019-13691 https://crbug.com/966914 Common Vulnerability Exposure (CVE) ID: CVE-2019-13692 https://crbug.com/991888 Common Vulnerability Exposure (CVE) ID: CVE-2019-13693 https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop.html https://crbug.com/1005753 Common Vulnerability Exposure (CVE) ID: CVE-2019-13694 https://crbug.com/1005251 Common Vulnerability Exposure (CVE) ID: CVE-2019-13695 https://crbug.com/1004730 Common Vulnerability Exposure (CVE) ID: CVE-2019-13696 https://crbug.com/1000635 Common Vulnerability Exposure (CVE) ID: CVE-2019-13697 https://crbug.com/990849 Common Vulnerability Exposure (CVE) ID: CVE-2019-13699 https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_22.html https://crbug.com/1001503 SuSE Security Announcement: openSUSE-SU-2020:0010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.html Common Vulnerability Exposure (CVE) ID: CVE-2019-13700 https://crbug.com/998431 Common Vulnerability Exposure (CVE) ID: CVE-2019-13701 https://crbug.com/998284 Common Vulnerability Exposure (CVE) ID: CVE-2019-13703 https://crbug.com/992838 Common Vulnerability Exposure (CVE) ID: CVE-2019-13704 https://crbug.com/1001283 Common Vulnerability Exposure (CVE) ID: CVE-2019-13705 https://crbug.com/989078 Common Vulnerability Exposure (CVE) ID: CVE-2019-13706 https://crbug.com/1001159 Common Vulnerability Exposure (CVE) ID: CVE-2019-13707 https://crbug.com/859349 Common Vulnerability Exposure (CVE) ID: CVE-2019-13708 https://crbug.com/931894 Common Vulnerability Exposure (CVE) ID: CVE-2019-13709 https://crbug.com/1005218 Common Vulnerability Exposure (CVE) ID: CVE-2019-13710 https://crbug.com/756825 Common Vulnerability Exposure (CVE) ID: CVE-2019-13711 https://crbug.com/986063 Common Vulnerability Exposure (CVE) ID: CVE-2019-13713 https://crbug.com/993288 Common Vulnerability Exposure (CVE) ID: CVE-2019-13714 https://crbug.com/982812 Common Vulnerability Exposure (CVE) ID: CVE-2019-13715 https://crbug.com/760855 Common Vulnerability Exposure (CVE) ID: CVE-2019-13716 https://crbug.com/1005948 Common Vulnerability Exposure (CVE) ID: CVE-2019-13717 https://crbug.com/839239 Common Vulnerability Exposure (CVE) ID: CVE-2019-13718 https://crbug.com/866162 Common Vulnerability Exposure (CVE) ID: CVE-2019-13719 https://crbug.com/927150 Common Vulnerability Exposure (CVE) ID: CVE-2019-13720 https://security.gentoo.org/glsa/202004-04 http://packetstormsecurity.com/files/167066/Google-Chrome-78.0.3904.70-Remote-Code-Execution.html https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html https://crbug.com/1019226 SuSE Security Announcement: openSUSE-SU-2019:2664 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00022.html Common Vulnerability Exposure (CVE) ID: CVE-2019-13721 https://crbug.com/1013868 Common Vulnerability Exposure (CVE) ID: CVE-2019-13765 https://crbug.com/1007194 Common Vulnerability Exposure (CVE) ID: CVE-2019-13766 https://crbug.com/989969 Common Vulnerability Exposure (CVE) ID: CVE-2019-25154 Common Vulnerability Exposure (CVE) ID: CVE-2019-5869 https://chromereleases.googleblog.com/2019/08/stable-channel-update-for-desktop_26.html https://crbug.com/978793 Common Vulnerability Exposure (CVE) ID: CVE-2019-5870 https://crbug.com/999311 Common Vulnerability Exposure (CVE) ID: CVE-2019-5871 https://crbug.com/990570 Common Vulnerability Exposure (CVE) ID: CVE-2019-5872 https://crbug.com/981492 Common Vulnerability Exposure (CVE) ID: CVE-2019-5874 https://crbug.com/989797 Common Vulnerability Exposure (CVE) ID: CVE-2019-5875 https://crbug.com/979443 Common Vulnerability Exposure (CVE) ID: CVE-2019-5876 https://crbug.com/997190 Common Vulnerability Exposure (CVE) ID: CVE-2019-5877 https://crbug.com/999310 Common Vulnerability Exposure (CVE) ID: CVE-2019-5878 https://crbug.com/1000217 Common Vulnerability Exposure (CVE) ID: CVE-2019-5879 https://crbug.com/986043 Common Vulnerability Exposure (CVE) ID: CVE-2019-5880 https://crbug.com/831725
Copyright	Copyright (C) 2019 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.