106767

RHSA-2019:0309

https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html

https://crbug.com/849421

FEDORA-2019-05a780936d

FEDORA-2019-561eae4626

DSA-4395

Update to 73.0.3683.75. Fixes large bucket of CVEs.

CVE-2019-5754 CVE-2019-5782 CVE-2019-5755 CVE-2019-5756 CVE-2019-5757 CVE-2019-5758 CVE-2019-5759 CVE-2019-5760 CVE-2019-5761 CVE-2019-5762 CVE-2019-5763 CVE-2019-5764 CVE-2019-5765 CVE-2019-5766 CVE-2019-5767 CVE-2019-5768 CVE-2019-5769 CVE-2019-5770 CVE-2019-5771 CVE-2019-5772 CVE-2019-5773 CVE-2019-5774 CVE-2019-5775 CVE-2019-5776 CVE-2019-5777 CVE-2019-5778 CVE-2019-5779 CVE-2019-5780 CVE-2019-5781 CVE-2019-5784 CVE-2019-5786 CVE-2019-5787 CVE-2019-5788 CVE-2019-5789 CVE-2019-5790 CVE-2019-5791 CVE-2019-5792 CVE-2019-5793 CVE-2019-5794 CVE-2019-5795 CVE-2019-5796 CVE-2019-5797 CVE-2019-5798 CVE-2019-5799 CVE-2019-5800 CVE-2019-5802 CVE-2019-5803

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for Chromium to version 72.0.3626.96 fixes the following issues :

Security issues fixed (bsc#1123641 and bsc#1124936) :

  - CVE-2019-5784: Inappropriate implementation in V8 

  - CVE-2019-5754: Inappropriate implementation in QUIC     Networking.

  - CVE-2019-5782: Inappropriate implementation in V8.

  - CVE-2019-5755: Inappropriate implementation in V8.

  - CVE-2019-5756: Use after free in PDFium.

  - CVE-2019-5757: Type Confusion in SVG.

  - CVE-2019-5758: Use after free in Blink.

  - CVE-2019-5759: Use after free in HTML select elements.

  - CVE-2019-5760: Use after free in WebRTC.

  - CVE-2019-5761: Use after free in SwiftShader.

  - CVE-2019-5762: Use after free in PDFium.

  - CVE-2019-5763: Insufficient validation of untrusted     input in V8.

  - CVE-2019-5764: Use after free in WebRTC.

  - CVE-2019-5765: Insufficient policy enforcement in the     browser.

  - CVE-2019-5766: Insufficient policy enforcement in     Canvas.

  - CVE-2019-5767: Incorrect security UI in WebAPKs.

  - CVE-2019-5768: Insufficient policy enforcement in     DevTools.

  - CVE-2019-5769: Insufficient validation of untrusted     input in Blink.

  - CVE-2019-5770: Heap buffer overflow in WebGL.

  - CVE-2019-5771: Heap buffer overflow in SwiftShader.

  - CVE-2019-5772: Use after free in PDFium.

  - CVE-2019-5773: Insufficient data validation in     IndexedDB.

  - CVE-2019-5774: Insufficient validation of untrusted     input in SafeBrowsing.

  - CVE-2019-5775: Insufficient policy enforcement in     Omnibox.

  - CVE-2019-5776: Insufficient policy enforcement in     Omnibox.

  - CVE-2019-5777: Insufficient policy enforcement in     Omnibox.

  - CVE-2019-5778: Insufficient policy enforcement in     Extensions.

  - CVE-2019-5779: Insufficient policy enforcement in     ServiceWorker.

  - CVE-2019-5780: Insufficient policy enforcement.

  - CVE-2019-5781: Insufficient policy enforcement in     Omnibox.

For a full list of changes refer to https://chromereleases.googleblog.com/2019/02/stable-channel-update-fo r-desktop.html

This update for Chromium to version 72.0.3626.96 fixes the following issues :

Security issues fixed (bsc#1123641 and bsc#1124936) :

  - CVE-2019-5784: Inappropriate implementation in V8 

  - CVE-2019-5754: Inappropriate implementation in QUIC     Networking.

  - CVE-2019-5782: Inappropriate implementation in V8. 

  - CVE-2019-5755: Inappropriate implementation in V8. 

  - CVE-2019-5756: Use after free in PDFium. 

  - CVE-2019-5757: Type Confusion in SVG.

  - CVE-2019-5758: Use after free in Blink.

  - CVE-2019-5759: Use after free in HTML select elements.

  - CVE-2019-5760: Use after free in WebRTC. 

  - CVE-2019-5761: Use after free in SwiftShader.

  - CVE-2019-5762: Use after free in PDFium. 

  - CVE-2019-5763: Insufficient validation of untrusted     input in V8.

  - CVE-2019-5764: Use after free in WebRTC. 

  - CVE-2019-5765: Insufficient policy enforcement in the     browser.

  - CVE-2019-5766: Insufficient policy enforcement in     Canvas.

  - CVE-2019-5767: Incorrect security UI in WebAPKs. 

  - CVE-2019-5768: Insufficient policy enforcement in     DevTools. 

  - CVE-2019-5769: Insufficient validation of untrusted     input in Blink.

  - CVE-2019-5770: Heap buffer overflow in WebGL. 

  - CVE-2019-5771: Heap buffer overflow in SwiftShader.

  - CVE-2019-5772: Use after free in PDFium. 

  - CVE-2019-5773: Insufficient data validation in     IndexedDB.

  - CVE-2019-5774: Insufficient validation of untrusted     input in SafeBrowsing. 

  - CVE-2019-5775: Insufficient policy enforcement in     Omnibox. 

  - CVE-2019-5776: Insufficient policy enforcement in     Omnibox. 

  - CVE-2019-5777: Insufficient policy enforcement in     Omnibox. 

  - CVE-2019-5778: Insufficient policy enforcement in     Extensions.

  - CVE-2019-5779: Insufficient policy enforcement in     ServiceWorker.

  - CVE-2019-5780: Insufficient policy enforcement. 

  - CVE-2019-5781: Insufficient policy enforcement in     Omnibox.

For a full list of changes refer to https://chromereleases.googleblog.com/2019/02/stable-channel-update-fo r-desktop.html

Several vulnerabilities have been discovered in the chromium web browser.

  - CVE-2018-17481     A use-after-free issue was discovered in the pdfium     library.

  - CVE-2019-5754     Klzgrad discovered an error in the QUIC networking     implementation.

  - CVE-2019-5755     Jay Bosamiya discovered an implementation error in the     v8 JavaScript library.

  - CVE-2019-5756     A use-after-free issue was discovered in the pdfium     library.

  - CVE-2019-5757     Alexandru Pitis discovered a type confusion error in the     SVG image format implementation.

  - CVE-2019-5758     Zhe Jin discovered a use-after-free issue in     blink/webkit.

  - CVE-2019-5759     Almog Benin discovered a use-after-free issue when     handling HTML pages containing select elements.

  - CVE-2019-5760     Zhe Jin discovered a use-after-free issue in the WebRTC     implementation.

  - CVE-2019-5762     A use-after-free issue was discovered in the pdfium     library.

  - CVE-2019-5763     Guang Gon discovered an input validation error in the v8     JavaScript library.

  - CVE-2019-5764     Eyal Itkin discovered a use-after-free issue in the     WebRTC implementation.

  - CVE-2019-5765     Sergey Toshin discovered a policy enforcement error.

  - CVE-2019-5766     David Erceg discovered a policy enforcement error.

  - CVE-2019-5767     Haoran Lu, Yifan Zhang, Luyi Xing, and Xiaojing Liao     reported an error in the WebAPKs user interface.

  - CVE-2019-5768     Rob Wu discovered a policy enforcement error in the     developer tools.

  - CVE-2019-5769     Guy Eshel discovered an input validation error in     blink/webkit.

  - CVE-2019-5770     hemidallt discovered a buffer overflow issue in the     WebGL implementation.

  - CVE-2019-5772     Zhen Zhou discovered a use-after-free issue in the     pdfium library.

  - CVE-2019-5773     Yongke Wong discovered an input validation error in the     IndexDB implementation.

  - CVE-2019-5774     Junghwan Kang and Juno Im discovered an input validation     error in the SafeBrowsing implementation.

  - CVE-2019-5775     evil1m0 discovered a policy enforcement error.

  - CVE-2019-5776     Lnyas Zhang discovered a policy enforcement error.

  - CVE-2019-5777     Khalil Zhani discovered a policy enforcement error.

  - CVE-2019-5778     David Erceg discovered a policy enforcement error in the     Extensions implementation.

  - CVE-2019-5779     David Erceg discovered a policy enforcement error in the     ServiceWorker implementation.

  - CVE-2019-5780     Andreas Hegenberg discovered a policy enforcement error.

  - CVE-2019-5781     evil1m0 discovered a policy enforcement error.

  - CVE-2019-5782     Qixun Zhao discovered an implementation error in the v8     JavaScript library.

  - CVE-2019-5783     Shintaro Kobori discovered an input validation error in     the developer tools.

  - CVE-2019-5784     Lucas Pinheiro discovered an implementation error in the     v8 JavaScript library.

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary.

Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Chromium is an open source web browser, powered by WebKit (Blink).

This update upgrades Chromium to version 72.0.3626.81.

Security Fix(es) :

* chromium-browser: Inappropriate implementation in QUIC Networking (CVE-2019-5754)

* chromium-browser: Inappropriate implementation in V8 (CVE-2019-5755)

* chromium-browser: Use after free in PDFium (CVE-2019-5756)

* chromium-browser: Type Confusion in SVG (CVE-2019-5757)

* chromium-browser: Use after free in Blink (CVE-2019-5758)

* chromium-browser: Use after free in HTML select elements (CVE-2019-5759)

* chromium-browser: Use after free in WebRTC (CVE-2019-5760)

* chromium-browser: Use after free in SwiftShader (CVE-2019-5761)

* chromium-browser: Use after free in PDFium (CVE-2019-5762)

* chromium-browser: Insufficient validation of untrusted input in V8 (CVE-2019-5763)

* chromium-browser: Use after free in WebRTC (CVE-2019-5764)

* chromium-browser: Insufficient policy enforcement in the browser (CVE-2019-5765)

* chromium-browser: Inappropriate implementation in V8 (CVE-2019-5782)

* chromium-browser: Insufficient policy enforcement in Canvas (CVE-2019-5766)

* chromium-browser: Incorrect security UI in WebAPKs (CVE-2019-5767)

* chromium-browser: Insufficient policy enforcement in DevTools (CVE-2019-5768)

* chromium-browser: Insufficient validation of untrusted input in Blink (CVE-2019-5769)

* chromium-browser: Heap buffer overflow in WebGL (CVE-2019-5770)

* chromium-browser: Heap buffer overflow in SwiftShader (CVE-2019-5771)

* chromium-browser: Use after free in PDFium (CVE-2019-5772)

* chromium-browser: Insufficient data validation in IndexedDB (CVE-2019-5773)

* chromium-browser: Insufficient validation of untrusted input in SafeBrowsing (CVE-2019-5774)

* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5775)

* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5776)

* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5777)

* chromium-browser: Insufficient policy enforcement in Extensions (CVE-2019-5778)

* chromium-browser: Insufficient policy enforcement in ServiceWorker (CVE-2019-5779)

* chromium-browser: Insufficient policy enforcement (CVE-2019-5780)

* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5781)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

The version of Google Chrome installed on the remote Windows host is prior to 72.0.3626.81. It is, therefore, affected by multiple vulnerabilities as noted in Google Chrome stable channel update release notes for 2019/01/29. Please refer to the release notes for additional information. Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self- reported version number.

The version of Google Chrome installed on the remote macOS host is prior to 72.0.3626.81. It is, therefore, affected by multiple vulnerabilities as noted in Google Chrome stable channel update release notes for 2019/01/29. Please refer to the release notes for additional information. Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self- reported version number.

ID	Name	Product	Family	Severity
124466	Fedora 30 : chromium (2019-05a780936d)	Nessus	Fedora Local Security Checks	high
123100	Fedora 29 : chromium (2019-561eae4626)	Nessus	Fedora Local Security Checks	high
122305	openSUSE Security Update : chromium (openSUSE-2019-205)	Nessus	SuSE Local Security Checks	medium
122304	openSUSE Security Update : chromium (openSUSE-2019-204)	Nessus	SuSE Local Security Checks	medium
122272	Debian DSA-4395-1 : chromium - security update	Nessus	Debian Local Security Checks	medium
122112	RHEL 6 : chromium-browser (RHSA-2019:0309)	Nessus	Red Hat Local Security Checks	medium
121514	Google Chrome < 72.0.3626.81 Multiple Vulnerabilities	Nessus	Windows	medium
121513	Google Chrome < 72.0.3626.81 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	medium

CVE-2019-5777

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Tenable Plugins