Project

General

Profile

Bug #6787

Bug #6785: chromium: Multiple vulnerabilities (CVE-2017-5006, CVE-2017-5007, CVE-2017-5008, CVE…CVE-2017-5019, CVE-2017-5020, CVE-2017-5021, CVE-2017-5022, CVE-2017-5023, CVE-2017-5024, CVE-2017-5025, CVE-2017-5026)

[3.5] chromium: Multiple vulnerabilities (CVE-2017-5006, CVE-2017-5007, CVE-2017-5008, CVE…CVE-2017-5019, CVE-2017-5020, CVE-2017-5021, CVE-2017-5022, CVE-2017-5023, CVE-2017-5024, CVE-2017-5025, CVE-2017-5026)

Added by Alicha CH almost 2 years ago. Updated almost 2 years ago.

Status:
Closed
Priority:
Normal
Category:
Security
Target version:
Start date:
01/31/2017
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

CVE-2017-5006: Universal XSS in Blink.
CVE-2017-5007: Universal XSS in Blink.
CVE-2017-5008: Universal XSS in Blink.
CVE-2017-5009: Out of bounds memory access in WebRTC.
CVE-2017-5010: Universal XSS in Blink.
CVE-2017-5011: Unauthorised file access in Devtools.
CVE-2017-5012: Heap overflow in V8.
CVE-2017-5013: Address spoofing in Omnibox.
CVE-2017-5014: Heap overflow in Skia.
CVE-2017-5015: Address spoofing in Omnibox.
CVE-2017-5016: UI spoofing in Blink.
CVE-2017-5017: Uninitialised memory access in webm video.
CVE-2017-5018: Universal XSS in chrome://apps.
CVE-2017-5019: Use after free in Renderer.
CVE-2017-5020: Universal XSS in chrome://downloads.
CVE-2017-5021: Use after free in Extensions.
CVE-2017-5022: Bypass of Content Security Policy in Blink.
CVE-2017-5023: Type confusion in metrics.
CVE-2017-5024: Heap overflow in FFmpeg.
CVE-2017-5025: Heap overflow in FFmpeg.
CVE-2017-5026: UI spoofing.

Fixed In Version:

Chrome 56.0.2924.76

Reference:

https://chromereleases.googleblog.com/2017/01/stable-channel-update-for-desktop.html

Associated revisions

Revision 5a911c1a (diff)
Added by Jakub Jirutka almost 2 years ago

community/chromium: security upgrade to 56.0.2924.76

fixes #6787

History

#1 Updated by Jakub Jirutka almost 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#2 Updated by Alicha CH almost 2 years ago

  • Category set to Security
  • Status changed from Resolved to Closed

Also available in: Atom PDF