[Pkg-chromium-maint] Bug#879451: Security issues in chromium < 62.0.3202.62
Steffen Müller
debian at xonx.de
Fri Oct 27 22:50:54 UTC 2017
Chromium < 62.0.3202.62 has several security issues with high severity:
https://chromereleases.googleblog.com/2017/10/stable-channel-update-for-desktop.html
> Chrome 62.0.3202.62 contains a number of fixes and improvements -- a
list of changes is available in the log. Watch out for upcoming Chrome
and Chromium blog posts about new features and big efforts delivered in 62.
> [762930] High CVE-2017-5124: UXSS with MHTML. Reported by Anonymous
on 2017-09-07
> [749147] High CVE-2017-5125: Heap overflow in Skia. Reported by
Anonymous on 2017-07-26
> [760455] High CVE-2017-5126: Use after free in PDFium. Reported by
Luật Nguyễn (@l4wio) of KeenLab, Tencent on 2017-08-30
> [765384] High CVE-2017-5127: Use after free in PDFium. Reported by
Luật Nguyễn (@l4wio) of KeenLab, Tencent on 2017-09-14
> [765469] High CVE-2017-5128: Heap overflow in WebGL. Reported by
Omair on 2017-09-14
> [765495] High CVE-2017-5129: Use after free in WebAudio. Reported by
Omair on 2017-09-15
> [718858] High CVE-2017-5132: Incorrect stack manipulation in
WebAssembly. Reported by Gaurav Dewan (@007gauravdewan) of Adobe Systems
India Pvt. Ltd. on 2017-05-05
> [722079] High CVE-2017-5130: Heap overflow in libxml2. Reported by
Pranjal Jumde (@pjumde) on 2017-05-14
More information about the Pkg-chromium-maint
mailing list