Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.851143
Kategorie:SuSE Local Security Checks
Titel:openSUSE: Security Advisory for Chromium (openSUSE-SU-2015:2290-1)
Zusammenfassung:The remote host is missing an update for the 'Chromium'; package(s) announced via the referenced advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'Chromium'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Chromium was updated to 47.0.2526.80 to fix security issues and bugs.

The following vulnerabilities were fixed:

* CVE-2015-6788: Type confusion in extensions

* CVE-2015-6789: Use-after-free in Blink

* CVE-2015-6790: Escaping issue in saved pages

* CVE-2015-6791: Various fixes from internal audits, fuzzing and other
initiatives

The following vulnerabilities were fixed in 47.0.2526.73:

* CVE-2015-6765: Use-after-free in AppCache

* CVE-2015-6766: Use-after-free in AppCache

* CVE-2015-6767: Use-after-free in AppCache

* CVE-2015-6768: Cross-origin bypass in DOM

* CVE-2015-6769: Cross-origin bypass in core

* CVE-2015-6770: Cross-origin bypass in DOM

* CVE-2015-6771: Out of bounds access in v8

* CVE-2015-6772: Cross-origin bypass in DOM

* CVE-2015-6764: Out of bounds access in v8

* CVE-2015-6773: Out of bounds access in Skia

* CVE-2015-6774: Use-after-free in Extensions

* CVE-2015-6775: Type confusion in PDFium

* CVE-2015-6776: Out of bounds access in PDFium

* CVE-2015-6777: Use-after-free in DOM

* CVE-2015-6778: Out of bounds access in PDFium

* CVE-2015-6779: Scheme bypass in PDFium

* CVE-2015-6780: Use-after-free in Infobars

* CVE-2015-6781: Integer overflow in Sfntly

* CVE-2015-6782: Content spoofing in Omnibox

* CVE-2015-6783: Signature validation issue in Android Crazy Linker.

* CVE-2015-6784: Escaping issue in saved pages

* CVE-2015-6785: Wildcard matching issue in CSP

* CVE-2015-6786: Scheme bypass in CSP

* CVE-2015-6787: Various fixes from internal audits, fuzzing and other
initiatives.

* Multiple vulnerabilities in V8 fixed at the tip of the 4.7 branch
(currently 4.7.80.23)

Affected Software/OS:
Chromium on openSUSE 13.2, openSUSE 13.1

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-6764
BugTraq ID: 78209
http://www.securityfocus.com/bid/78209
Debian Security Information: DSA-3415 (Google Search)
http://www.debian.org/security/2015/dsa-3415
https://security.gentoo.org/glsa/201603-09
http://www.securitytracker.com/id/1034298
SuSE Security Announcement: openSUSE-SU-2015:2290 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00016.html
SuSE Security Announcement: openSUSE-SU-2015:2291 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00017.html
SuSE Security Announcement: openSUSE-SU-2016:0138 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-01/msg00045.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-6765
BugTraq ID: 78416
http://www.securityfocus.com/bid/78416
http://www.ubuntu.com/usn/USN-2825-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-6766
Common Vulnerability Exposure (CVE) ID: CVE-2015-6767
Common Vulnerability Exposure (CVE) ID: CVE-2015-6768
Common Vulnerability Exposure (CVE) ID: CVE-2015-6769
Common Vulnerability Exposure (CVE) ID: CVE-2015-6770
Common Vulnerability Exposure (CVE) ID: CVE-2015-6771
Common Vulnerability Exposure (CVE) ID: CVE-2015-6772
Common Vulnerability Exposure (CVE) ID: CVE-2015-6773
Common Vulnerability Exposure (CVE) ID: CVE-2015-6774
Common Vulnerability Exposure (CVE) ID: CVE-2015-6775
Common Vulnerability Exposure (CVE) ID: CVE-2015-6776
Common Vulnerability Exposure (CVE) ID: CVE-2015-6777
Common Vulnerability Exposure (CVE) ID: CVE-2015-6778
Common Vulnerability Exposure (CVE) ID: CVE-2015-6779
Common Vulnerability Exposure (CVE) ID: CVE-2015-6780
Common Vulnerability Exposure (CVE) ID: CVE-2015-6781
Common Vulnerability Exposure (CVE) ID: CVE-2015-6782
Common Vulnerability Exposure (CVE) ID: CVE-2015-6783
Common Vulnerability Exposure (CVE) ID: CVE-2015-6784
Common Vulnerability Exposure (CVE) ID: CVE-2015-6785
Common Vulnerability Exposure (CVE) ID: CVE-2015-6786
Common Vulnerability Exposure (CVE) ID: CVE-2015-6787
https://www.exploit-db.com/exploits/39162/
https://www.exploit-db.com/exploits/39163/
https://www.exploit-db.com/exploits/39165/
Common Vulnerability Exposure (CVE) ID: CVE-2015-6788
BugTraq ID: 78734
http://www.securityfocus.com/bid/78734
Debian Security Information: DSA-3418 (Google Search)
http://www.debian.org/security/2015/dsa-3418
RedHat Security Advisories: RHSA-2015:2618
http://rhn.redhat.com/errata/RHSA-2015-2618.html
Common Vulnerability Exposure (CVE) ID: CVE-2015-6789
http://www.ubuntu.com/usn/USN-2860-1
Common Vulnerability Exposure (CVE) ID: CVE-2015-6790
Common Vulnerability Exposure (CVE) ID: CVE-2015-6791
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.