Detections
Analytics
RHEL 6 : chromium-browser (RHSA-2018:0484)
high Nessus Plugin ID 108275
Language:
Synopsis
The remote Red Hat host is missing one or more security updates.Description
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Chromium is an open source web browser, powered by WebKit (Blink).
This update upgrades Chromium to version 65.0.3325.146.
Security Fix(es) :
* chromium-browser: incorrect permissions on shared memory (CVE-2018-6057)
* chromium-browser: use-after-free in blink (CVE-2018-6060)
* chromium-browser: race condition in v8 (CVE-2018-6061)
* chromium-browser: heap buffer overflow in skia (CVE-2018-6062)
* chromium-browser: incorrect permissions on shared memory (CVE-2018-6063)
* chromium-browser: type confusion in v8 (CVE-2018-6064)
* chromium-browser: integer overflow in v8 (CVE-2018-6065)
* chromium-browser: same origin bypass via canvas (CVE-2018-6066)
* chromium-browser: buffer overflow in skia (CVE-2018-6067)
* chromium-browser: stack-based buffer overflow in skia (CVE-2018-6069)
* chromium-browser: csp bypass through extensions (CVE-2018-6070)
* chromium-browser: heap bufffer overflow in skia (CVE-2018-6071)
* chromium-browser: integer overflow in pdfium (CVE-2018-6072)
* chromium-browser: heap bufffer overflow in webgl (CVE-2018-6073)
* chromium-browser: mark-of-the-web bypass (CVE-2018-6074)
* chromium-browser: overly permissive cross origin downloads (CVE-2018-6075)
* chromium-browser: incorrect handling of url fragment identifiers in blink (CVE-2018-6076)
* chromium-browser: timing attack using svg filters (CVE-2018-6077)
* chromium-browser: url spoof in omnibox (CVE-2018-6078)
* chromium-browser: information disclosure via texture data in webgl (CVE-2018-6079)
* chromium-browser: information disclosure in ipc call (CVE-2018-6080)
* chromium-browser: xss in interstitials (CVE-2018-6081)
* chromium-browser: circumvention of port blocking (CVE-2018-6082)
* chromium-browser: incorrect processing of appmanifests (CVE-2018-6083)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Solution
Update the affected chromium-browser and / or chromium-browser-debuginfo packages.See Also
https://access.redhat.com/errata/RHSA-2018:0484
https://access.redhat.com/security/cve/cve-2018-6057
https://access.redhat.com/security/cve/cve-2018-6060
https://access.redhat.com/security/cve/cve-2018-6061
https://access.redhat.com/security/cve/cve-2018-6062
https://access.redhat.com/security/cve/cve-2018-6063
https://access.redhat.com/security/cve/cve-2018-6064
https://access.redhat.com/security/cve/cve-2018-6065
https://access.redhat.com/security/cve/cve-2018-6066
https://access.redhat.com/security/cve/cve-2018-6067
https://access.redhat.com/security/cve/cve-2018-6069
https://access.redhat.com/security/cve/cve-2018-6070
https://access.redhat.com/security/cve/cve-2018-6071
https://access.redhat.com/security/cve/cve-2018-6072
https://access.redhat.com/security/cve/cve-2018-6073
https://access.redhat.com/security/cve/cve-2018-6074
https://access.redhat.com/security/cve/cve-2018-6075
https://access.redhat.com/security/cve/cve-2018-6076
https://access.redhat.com/security/cve/cve-2018-6077
https://access.redhat.com/security/cve/cve-2018-6078
https://access.redhat.com/security/cve/cve-2018-6079
https://access.redhat.com/security/cve/cve-2018-6080
https://access.redhat.com/security/cve/cve-2018-6081
Plugin Details
Severity: High
ID: 108275
File Name: redhat-RHSA-2018-0484.nasl
Version: 1.15
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 3/13/2018
Updated: 4/25/2023
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.6
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2018-6083
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:chromium-browser, p-cpe:/a:redhat:enterprise_linux:chromium-browser-debuginfo, cpe:/o:redhat:enterprise_linux:6
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/12/2018
Vulnerability Publication Date: 11/14/2018
CISA Known Exploited Vulnerability Due Dates: 6/22/2022
Reference Information
CVE: CVE-2018-6057, CVE-2018-6060, CVE-2018-6061, CVE-2018-6062, CVE-2018-6063, CVE-2018-6064, CVE-2018-6065, CVE-2018-6066, CVE-2018-6067, CVE-2018-6069, CVE-2018-6070, CVE-2018-6071, CVE-2018-6072, CVE-2018-6073, CVE-2018-6074, CVE-2018-6075, CVE-2018-6076, CVE-2018-6077, CVE-2018-6078, CVE-2018-6079, CVE-2018-6080, CVE-2018-6081, CVE-2018-6082, CVE-2018-6083
RHSA: 2018:0484