FreeBSD : chromium -- multiple vulnerabilities (7cf058d8-158d-11e7-ba2c-e8e0b747a45a)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Google Chrome Releases reports :

5 security fixes in this release, including :

- [698622] Critical CVE-2017-5055: Use after free in printing. Credit
to Wadih Matar

- [699166] High CVE-2017-5054: Heap buffer overflow in V8. Credit to
Nicolas Trippar of Zimperium zLabs

- [662767] High CVE-2017-5052: Bad cast in Blink. Credit to JeongHoon
Shin

- [705445] High CVE-2017-5056: Use after free in Blink. Credit to
anonymous

- [702058] High CVE-2017-5053: Out of bounds memory access in V8.
Credit to Team Sniper (Keen Lab and PC Mgr) reported through ZDI
(ZDI-CAN-4587)

See also :

http://www.nessus.org/u?64842ac1
http://www.nessus.org/u?4ceb5cae

Solution :

Update the affected packages.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 99109 ()

Bugtraq ID:

CVE ID: CVE-2017-5052
CVE-2017-5053
CVE-2017-5054
CVE-2017-5055
CVE-2017-5056

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now