openSUSE Security Update : chromium (openSUSE-2017-508)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update to Chromium 58.0.3029.81 fixes the following security
issues (bsc#1035103) :

- CVE-2017-5057: Type confusion in PDFium

- CVE-2017-5058: Heap use after free in Print Preview

- CVE-2017-5059: Type confusion in Blink

- CVE-2017-5060: URL spoofing in Omnibox

- CVE-2017-5061: URL spoofing in Omnibox

- CVE-2017-5062: Use after free in Chrome Apps

- CVE-2017-5063: Heap overflow in Skia

- CVE-2017-5064: Use after free in Blink

- CVE-2017-5065: Incorrect UI in Blink

- CVE-2017-5066: Incorrect signature handing in Networking

- CVE-2017-5067: URL spoofing in Omnibox

- CVE-2017-5069: Cross-origin bypass in Blink

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1035103

Solution :

Update the affected chromium packages.

Risk factor :

High

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now