{
  "schema_version": "1.6.2",
  "id": "MGASA-2017-0317",
  "published": "2017-08-28T22:48:03Z",
  "modified": "2017-08-28T19:48:27Z",
  "summary": "Chromium-browser 60.0.3112.101 fixes security issues",
  "details": "Multiple flaws were found in the way Chromium 57 processes various types\nof web content, where loading a web page containing malicious content\ncould cause Chromium to crash, execute arbitrary code, or disclose\nsensitive information. (CVE-2017-5057, CVE-2017-5058, CVE-2017-5059,\nCVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5063,\nCVE-2017-5064, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067,\nCVE-2017-5068, CVE-2017-5069, CVE-2017-5070, CVE-2017-5071,\nCVE-2017-5072, CVE-2017-5073, CVE-2017-5074, CVE-2017-5075,\nCVE-2017-5076, CVE-2017-5077, CVE-2017-5078, CVE-2017-5079,\nCVE-2017-5080, CVE-2017-5081, CVE-2017-5082, CVE-2017-5083,\nCVE-2017-5085, CVE-2017-5086, CVE-2017-5087, CVE-2017-5088,\nCVE-2017-5089, CVE-2017-5091, CVE-2017-5092, CVE-2017-5093,\nCVE-2017-5094, CVE-2017-5095, CVE-2017-5096, CVE-2017-5097,\nCVE-2017-5098, CVE-2017-5099, CVE-2017-5100, CVE-2017-5101,\nCVE-2017-5102, CVE-2017-5103, CVE-2017-5104, CVE-2017-5105,\nCVE-2017-5106, CVE-2017-5107, CVE-2017-5108, CVE-2017-5109,\nCVE-2017-5110, CVE-2017-6991)\n",
  "related": [
    "CVE-2017-5059",
    "CVE-2017-5060",
    "CVE-2017-5061",
    "CVE-2017-5062",
    "CVE-2017-5063",
    "CVE-2017-5064",
    "CVE-2017-5065",
    "CVE-2017-5066",
    "CVE-2017-5067",
    "CVE-2017-5068",
    "CVE-2017-5069",
    "CVE-2017-5070",
    "CVE-2017-5071",
    "CVE-2017-5072",
    "CVE-2017-5073",
    "CVE-2017-5074",
    "CVE-2017-5075",
    "CVE-2017-5076",
    "CVE-2017-5077",
    "CVE-2017-5078",
    "CVE-2017-5079",
    "CVE-2017-5080",
    "CVE-2017-5081",
    "CVE-2017-5082",
    "CVE-2017-5083",
    "CVE-2017-5085",
    "CVE-2017-5086",
    "CVE-2017-5087",
    "CVE-2017-5088",
    "CVE-2017-5089",
    "CVE-2017-5091",
    "CVE-2017-5092",
    "CVE-2017-5093",
    "CVE-2017-5094",
    "CVE-2017-5095",
    "CVE-2017-5096",
    "CVE-2017-5097",
    "CVE-2017-5098",
    "CVE-2017-5099",
    "CVE-2017-5100",
    "CVE-2017-5101",
    "CVE-2017-5102",
    "CVE-2017-5103",
    "CVE-2017-5104",
    "CVE-2017-5105",
    "CVE-2017-5106",
    "CVE-2017-5107",
    "CVE-2017-5108",
    "CVE-2017-5109",
    "CVE-2017-5110",
    "CVE-2017-6991"
  ],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://advisories.mageia.org/MGASA-2017-0317.html"
    },
    {
      "type": "REPORT",
      "url": "https://bugs.mageia.org/show_bug.cgi?id=20708"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/04/stable-channel-update-for-desktop.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/05/stable-channel-update-for-desktop.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/05/stable-channel-update-for-desktop_9.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_15.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_20.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_26.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/08/stable-channel-update-for-desktop.html"
    },
    {
      "type": "REPORT",
      "url": "https://chromereleases.googleblog.com/2017/08/stable-channel-update-for-desktop_14.html"
    }
  ],
  "affected": [
    {
      "package": {
        "ecosystem": "Mageia:5",
        "name": "chromium-browser-stable",
        "purl": "pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-5"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "60.0.3112.101-1.mga5"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    },
    {
      "package": {
        "ecosystem": "Mageia:5",
        "name": "libwebp",
        "purl": "pkg:rpm/mageia/libwebp?arch=source&distro=mageia-5"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0.4.3-1.1.mga5"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    },
    {
      "package": {
        "ecosystem": "Mageia:6",
        "name": "chromium-browser-stable",
        "purl": "pkg:rpm/mageia/chromium-browser-stable?arch=source&distro=mageia-6"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "60.0.3112.101-1.mga6"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    }
  ],
  "credits": [
    {
      "name": "Mageia",
      "type": "COORDINATOR",
      "contact": [
        "https://wiki.mageia.org/en/Packages_Security_Team"
      ]
    }
  ]
}