ArchLinux: 201906-11: chromium: arbitrary code execution

    Date14 Jun 2019
    CategoryArchLinux
    457
    Posted ByLinuxSecurity Advisories
    The package chromium before version 75.0.3770.90-1 is vulnerable to arbitrary code execution.
    Arch Linux Security Advisory ASA-201906-11
    ==========================================
    
    Severity: High
    Date    : 2019-06-14
    CVE-ID  : CVE-2019-5842
    Package : chromium
    Type    : arbitrary code execution
    Remote  : Yes
    Link    : https://security.archlinux.org/AVG-981
    
    Summary
    =======
    
    The package chromium before version 75.0.3770.90-1 is vulnerable to
    arbitrary code execution.
    
    Resolution
    ==========
    
    Upgrade to 75.0.3770.90-1.
    
    # pacman -Syu "chromium>=75.0.3770.90-1"
    
    The problem has been fixed upstream in version 75.0.3770.90.
    
    Workaround
    ==========
    
    None.
    
    Description
    ===========
    
    A use-after-free vulnerability has been found in the Blink component of
    the chromium browser before 75.0.3770.90.
    
    Impact
    ======
    
    A remote attacker might be able to execute arbitrary code on the
    affected host.
    
    References
    ==========
    
    https://chromereleases.googleblog.com/2019/06/stable-channel-update-for-desktop_13.html
    https://crbug.com/961413
    https://security.archlinux.org/CVE-2019-5842
    
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    Have you used our RSS feeds?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 4 answer(s).
    /component/communitypolls/?task=poll.vote&format=json
    21
    radio
    [{"id":"77","title":"Yes, for articles","votes":"0","type":"x","order":"1","pct":0,"resources":[]},{"id":"78","title":"Yes, for advisories","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"79","title":"Hybrid that contains both","votes":"0","type":"x","order":"3","pct":0,"resources":[]},{"id":"80","title":"No","votes":"0","type":"x","order":"4","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.