Detections
Analytics

Debian DSA-4297-1 : chromium-browser - security update

high Nessus Plugin ID 117611

Language:

Synopsis

The remote Debian host is missing a security-related update.

Description

Two vulnerabilities have been discovered in the chromium web browser.
Kevin Cheung discovered an error in the WebAssembly implementation and evil1m0 discovered a URL spoofing issue.

Solution

Upgrade the chromium-browser packages.

For the stable distribution (stretch), this problem has been fixed in version 69.0.3497.92-1~deb9u1.

See Also

http://www.nessus.org/u?e33901a2

https://packages.debian.org/source/stretch/chromium-browser

https://www.debian.org/security/2018/dsa-4297

Plugin Details

Severity: High

ID: 117611

File Name: debian_DSA-4297.nasl

Version: 1.3

Type: local

Agent: unix

Published: 9/20/2018

Updated: 11/13/2018

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:chromium-browser, cpe:/o:debian:debian_linux:9.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 9/19/2018

Reference Information

DSA: 4297