ArchLinux: 201806-4: chromium: access restriction bypass
Summary
An incorrect handling of CSP header has been found in chromium before 67.0.3396.79.
Resolution
Upgrade to 67.0.3396.79-1.
# pacman -Syu "chromium>=67.0.3396.79-1"
The problem has been fixed upstream in version 67.0.3396.79.
References
https://chromereleases.googleblog.com/2018/06/stable-channel-update-for-desktop.html https://bugs.chromium.org/p/chromium/issues/detail https://security.archlinux.org/CVE-2018-6148
![Dist Arch](/images/distros/dist-arch.png)
Workaround
None.