ArchLinux: 201709-19: chromium: arbitrary code execution
Summary
- CVE-2017-5121 (arbitrary code execution)
An out-of-bounds access has been found in the V8 component of the
chromium browser before 61.0.3163.100.
- CVE-2017-5122 (arbitrary code execution)
An out-of-bounds access has been found in the V8 component of the
chromium browser before 61.0.3163.100.
Resolution
Upgrade to 61.0.3163.100-1.
# pacman -Syu "chromium>=61.0.3163.100-1"
The problems have been fixed upstream in version 61.0.3163.100.
References
https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop_21.html https://bugs.chromium.org/p/chromium/issues/detail?id=765433 https://bugs.chromium.org/p/chromium/issues/detail?id=752423 https://security.archlinux.org/CVE-2017-5121 https://security.archlinux.org/CVE-2017-5122
Workaround
None.