Debian DSA-3926-1 : chromium-browser - security update

Medium Nessus Plugin ID 102210

New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.

VPR Score: 5.9

Synopsis

The remote Debian host is missing a security-related update.

Description

Several vulnerabilities have been discovered in the chromium web browser.

- CVE-2017-5087 Ned Williamson discovered a way to escape the sandbox.

- CVE-2017-5088 Xiling Gong discovered an out-of-bounds read issue in the v8 JavaScript library.

- CVE-2017-5089 Michal Bentkowski discovered a spoofing issue.

- CVE-2017-5091 Ned Williamson discovered a use-after-free issue in IndexedDB.

- CVE-2017-5092 Yu Zhou discovered a use-after-free issue in PPAPI.

- CVE-2017-5093 Luan Herrera discovered a user interface spoofing issue.

- CVE-2017-5094 A type confusion issue was discovered in extensions.

- CVE-2017-5095 An out-of-bounds write issue was discovered in the pdfium library.

- CVE-2017-5097 An out-of-bounds read issue was discovered in the skia library.

- CVE-2017-5098 Jihoon Kim discovered a use-after-free issue in the v8 JavaScript library.

- CVE-2017-5099 Yuan Deng discovered an out-of-bounds write issue in PPAPI.

- CVE-2017-5100 A use-after-free issue was discovered in Chrome Apps.

- CVE-2017-5101 Luan Herrera discovered a URL spoofing issue.

- CVE-2017-5102 An uninitialized variable was discovered in the skia library.

- CVE-2017-5103 Another uninitialized variable was discovered in the skia library.

- CVE-2017-5104 Khalil Zhani discovered a user interface spoofing issue.

- CVE-2017-5105 Rayyan Bijoora discovered a URL spoofing issue.

- CVE-2017-5106 Jack Zac discovered a URL spoofing issue.

- CVE-2017-5107 David Kohlbrenner discovered an information leak in SVG file handling.

- CVE-2017-5108 Guang Gong discovered a type confusion issue in the pdfium library.

- CVE-2017-5109 Jose Maria Acuna Morgado discovered a user interface spoofing issue.

- CVE-2017-5110 xisigr discovered a way to spoof the payments dialog.

- CVE-2017-7000 Chaitin Security Research Lab discovered an information disclosure issue in the sqlite library.

Solution

Upgrade the chromium-browser packages.

For the stable distribution (stretch), these problems have been fixed in version 60.0.3112.78-1~deb9u1.

See Also

https://security-tracker.debian.org/tracker/CVE-2017-5087

https://security-tracker.debian.org/tracker/CVE-2017-5088

https://security-tracker.debian.org/tracker/CVE-2017-5089

https://security-tracker.debian.org/tracker/CVE-2017-5091

https://security-tracker.debian.org/tracker/CVE-2017-5092

https://security-tracker.debian.org/tracker/CVE-2017-5093

https://security-tracker.debian.org/tracker/CVE-2017-5094

https://security-tracker.debian.org/tracker/CVE-2017-5095

https://security-tracker.debian.org/tracker/CVE-2017-5097

https://security-tracker.debian.org/tracker/CVE-2017-5098

https://security-tracker.debian.org/tracker/CVE-2017-5099

https://security-tracker.debian.org/tracker/CVE-2017-5100

https://security-tracker.debian.org/tracker/CVE-2017-5101

https://security-tracker.debian.org/tracker/CVE-2017-5102

https://security-tracker.debian.org/tracker/CVE-2017-5103

https://security-tracker.debian.org/tracker/CVE-2017-5104

https://security-tracker.debian.org/tracker/CVE-2017-5105

https://security-tracker.debian.org/tracker/CVE-2017-5106

https://security-tracker.debian.org/tracker/CVE-2017-5107

https://security-tracker.debian.org/tracker/CVE-2017-5108

https://security-tracker.debian.org/tracker/CVE-2017-5109

https://security-tracker.debian.org/tracker/CVE-2017-5110

https://security-tracker.debian.org/tracker/CVE-2017-7000

https://packages.debian.org/source/stretch/chromium-browser

https://www.debian.org/security/2017/dsa-3926

Plugin Details

Severity: Medium

ID: 102210

File Name: debian_DSA-3926.nasl

Version: 3.9

Type: local

Agent: unix

Published: 2017/08/07

Updated: 2021/01/04

Dependencies: 12634

Risk Information

Risk Factor: Medium

VPR Score: 5.9

CVSS v2.0

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSS v3.0

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:chromium-browser, cpe:/o:debian:debian_linux:9.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2017/08/04

Vulnerability Publication Date: 2017/10/27

Reference Information

CVE: CVE-2017-5087, CVE-2017-5088, CVE-2017-5089, CVE-2017-5091, CVE-2017-5092, CVE-2017-5093, CVE-2017-5094, CVE-2017-5095, CVE-2017-5097, CVE-2017-5098, CVE-2017-5099, CVE-2017-5100, CVE-2017-5101, CVE-2017-5102, CVE-2017-5103, CVE-2017-5104, CVE-2017-5105, CVE-2017-5106, CVE-2017-5107, CVE-2017-5108, CVE-2017-5109, CVE-2017-5110, CVE-2017-7000

DSA: 3926