Mageia 2019-0304: chromium-browser-stable security update
Summary
Chromium-browser 77.0.3865.120 fixes security issues:
Four use-after-free bugs were found in Chromium 77.0.3865.90: one in the
IndexedDB component (CVE-2019-13693), one in the WebRTC component
(CVE-2019-13694), one in the audio component (CVE-2019-13695), and one in
the V8 component (CVE-2019-13696). A cross-origin size leak (CVE-2019-13697)
was also fixed, as well as various problems found using internal audits,
fuzzing and other initiatives.
References
- https://bugs.mageia.org/show_bug.cgi?id=25580
- https://chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13693
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13694
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13695
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13696
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13697
Resolution
MGASA-2019-0304 - Updated chromium-browser-stable packages fix security vulnerabilities
SRPMS
- 7/core/chromium-browser-stable-77.0.3865.120-1.mga7