ID de Prueba:	1.3.6.1.4.1.25623.1.0.704421
Categoría:	Debian Local Security Checks
Título:	Debian Security Advisory DSA 4421-1 (chromium - security update)
Resumen:	The remote host is missing an update for the 'chromium'; package(s) announced via the DSA-4421-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'chromium' package(s) announced via the DSA-4421-1 advisory. Vulnerability Insight: Several vulnerabilities have been discovered in the chromium web browser. CVE-2019-5787 Zhe Jin discovered a use-after-free issue. CVE-2019-5788 Mark Brand discovered a use-after-free issue in the FileAPI implementation. CVE-2019-5789 Mark Brand discovered a use-after-free issue in the WebMIDI implementation. CVE-2019-5790 Dimitri Fourny discovered a buffer overflow issue in the v8 javascript library. CVE-2019-5791 Choongwoo Han discovered a type confusion issue in the v8 javascript library. CVE-2019-5792 pdknsk discovered an integer overflow issue in the pdfium library. CVE-2019-5793 Jun Kokatsu discovered a permissions issue in the Extensions implementation. CVE-2019-5794 Juno Im of Theori discovered a user interface spoofing issue. CVE-2019-5795 pdknsk discovered an integer overflow issue in the pdfium library. CVE-2019-5796 Mark Brand discovered a race condition in the Extensions implementation. CVE-2019-5797 Mark Brand discovered a race condition in the DOMStorage implementation. CVE-2019-5798 Tran Tien Hung discovered an out-of-bounds read issue in the skia library. CVE-2019-5799 sohalt discovered a way to bypass the Content Security Policy. CVE-2019-5800 Jun Kokatsu discovered a way to bypass the Content Security Policy. CVE-2019-5802 Ronni Skansing discovered a user interface spoofing issue. CVE-2019-5803 Andrew Comminos discovered a way to bypass the Content Security Policy. Affected Software/OS: 'chromium' package(s) on Debian Linux. Solution: For the stable distribution (stretch), these problems have been fixed in version 73.0.3683.75-1~ deb9u1. We recommend that you upgrade your chromium packages. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-5787 https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html https://crbug.com/913964 SuSE Security Announcement: openSUSE-SU-2019:1666 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00085.html Common Vulnerability Exposure (CVE) ID: CVE-2019-5788 https://crbug.com/925864 Common Vulnerability Exposure (CVE) ID: CVE-2019-5789 https://crbug.com/921581 Common Vulnerability Exposure (CVE) ID: CVE-2019-5790 https://crbug.com/914736 Common Vulnerability Exposure (CVE) ID: CVE-2019-5791 https://crbug.com/926651 Common Vulnerability Exposure (CVE) ID: CVE-2019-5792 https://crbug.com/914983 Common Vulnerability Exposure (CVE) ID: CVE-2019-5793 https://crbug.com/937487 Common Vulnerability Exposure (CVE) ID: CVE-2019-5794 https://crbug.com/935175 Common Vulnerability Exposure (CVE) ID: CVE-2019-5795 https://crbug.com/919643 Common Vulnerability Exposure (CVE) ID: CVE-2019-5796 https://crbug.com/918861 Common Vulnerability Exposure (CVE) ID: CVE-2019-5797 Common Vulnerability Exposure (CVE) ID: CVE-2019-5798 Bugtraq: 20190527 [SECURITY] [DSA 4451-1] thunderbird security update (Google Search) https://seclists.org/bugtraq/2019/May/67 Debian Security Information: DSA-4451 (Google Search) https://www.debian.org/security/2019/dsa-4451 https://crbug.com/883596 https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html RedHat Security Advisories: RHSA-2019:1308 https://access.redhat.com/errata/RHSA-2019:1308 RedHat Security Advisories: RHSA-2019:1309 https://access.redhat.com/errata/RHSA-2019:1309 RedHat Security Advisories: RHSA-2019:1310 https://access.redhat.com/errata/RHSA-2019:1310 SuSE Security Announcement: openSUSE-SU-2019:1484 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html SuSE Security Announcement: openSUSE-SU-2019:1534 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html SuSE Security Announcement: openSUSE-SU-2019:1664 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html https://usn.ubuntu.com/3997-1/ Common Vulnerability Exposure (CVE) ID: CVE-2019-5799 https://crbug.com/905301 Common Vulnerability Exposure (CVE) ID: CVE-2019-5800 https://crbug.com/894228 Common Vulnerability Exposure (CVE) ID: CVE-2019-5802 https://crbug.com/632514 Common Vulnerability Exposure (CVE) ID: CVE-2019-5803 https://crbug.com/909865
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.