Advisories » MGASA-2018-0343

Updated chromium-browser-stable packages fix security vulnerabilities

Publication date: 17 Aug 2018
Modification date: 17 Aug 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-4117 , CVE-2018-6044 , CVE-2018-6150 , CVE-2018-6151 , CVE-2018-6152 , CVE-2018-6153 , CVE-2018-6154 , CVE-2018-6155 , CVE-2018-6156 , CVE-2018-6157 , CVE-2018-6158 , CVE-2018-6159 , CVE-2018-6160 , CVE-2018-6161 , CVE-2018-6162 , CVE-2018-6163 , CVE-2018-6164 , CVE-2018-6165 , CVE-2018-6166 , CVE-2018-6167 , CVE-2018-6168 , CVE-2018-6169 , CVE-2018-6170 , CVE-2018-6171 , CVE-2018-6172 , CVE-2018-6173 , CVE-2018-6174 , CVE-2018-6175 , CVE-2018-6176 , CVE-2018-6177 , CVE-2018-6178 , CVE-2018-6179

Description

Chromium-browser 68.0.3440.106 fixes security issues:

Multiple flaws were found in the way Chromium 67.0.3396.87 processes
various types of web content, where loading a web page containing
malicious content could cause Chromium to crash, execute arbitrary
code, or disclose sensitive information (CVE-2018-4117, CVE-2018-6044,
CVE-2018-6153, CVE-2018-6154, CVE-2018-6155, CVE-2018-6156, CVE-2018-6157,
CVE-2018-6158, CVE-2018-6159, CVE-2018-6160, CVE-2018-6161, CVE-2018-6162,
CVE-2018-6163, CVE-2018-6164, CVE-2018-6165, CVE-2018-6166, CVE-2018-6167,
CVE-2018-6168, CVE-2018-6169, CVE-2018-6170, CVE-2018-6171, CVE-2018-6172,
CVE-2018-6173, CVE-2018-6174, CVE-2018-6175, CVE-2018-6176, CVE-2018-6177,
CVE-2018-6178, CVE-2018-6179)

Upstream also reported for release 68.0.3440.75 that three additional
flaws were fixed in earlier (unspecified) chromium releases but not listed
in the release notes for those releases. (CVE-2018-6150, CVE-2018-6151,
CVE-2018-6152)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=23364
• https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop_25.html
• https://chromereleases.googleblog.com/2018/07/stable-channel-update-for-desktop.html
• https://chromereleases.googleblog.com/2018/07/stable-channel-update-for-desktop_31.html
• https://chromereleases.googleblog.com/2018/08/stable-channel-update-for-desktop.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4117
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6044
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6150
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6151
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6152
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6153
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6154
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6155
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6156
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6157
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6158
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6159
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6160
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6161
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6162
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6163
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6164
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6165
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6166
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6167
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6168
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6169
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6170
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6171
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6172
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6173
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6174
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6175
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6176
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6177
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6178
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6179

SRPMS

6/core

• chromium-browser-stable-68.0.3440.106-1.mga6