Alerts This Week
Warning Icon 1 562
Alerts This Week
Warning Icon 1 562

openSUSE: 2021:1234-3 Urgent Security Update for Firefox Released

opensuse
Calendar Grey March 18, 2017
Dist Opensuse Esm H88
Fedora Security Update ID 2021:0345-1 addresses 15 vulnerabilities in Firefox, bolstering user protection and performance.
An update that fixes 18 vulnerabilities is now available

Description

Chromium was updated to 57.0.2987.98 to fix security issues and bugs.

The following vulnerabilities were fixed (bsc#1028848):

- CVE-2017-5030: Memory corruption in V8

- CVE-2017-5031: Use after free in ANGLE

- CVE-2017-5032: Out of bounds write in PDFium

- CVE-2017-5029: Integer overflow in libxslt

- CVE-2017-5034: Use after free in PDFium

- CVE-2017-5035: Incorrect security UI in Omnibox

- CVE-2017-5036: Use after free in PDFium

- CVE-2017-5037: Multiple out of bounds writes in ChunkDemuxer

- CVE-2017-5039: Use after free in PDFium

- CVE-2017-5040: Information disclosure in V8

- CVE-2017-5041: Address spoofing in Omnibox

- CVE-2017-5033: Bypass of Content Security Policy in Blink

- CVE-2017-5042: Incorrect handling of cookies in Cast

- CVE-2017-5038: Use after free in GuestView

- CVE-2017-5043: Use after free in GuestView

- CVE-2017-5044: Heap overflow in Skia

- CVE-2017-5045: Information disclosure in XSS Auditor

-...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security update important software fix SUSE Chromium safety enhancement

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- SUSE Package Hub for SUSE Linux Enterprise 12:

zypper in -t patch openSUSE-2017-353=1

To bring your system up-to-date, use "zypper patch".

Package List

- SUSE Package Hub for SUSE Linux Enterprise 12 (x86_64):

chromedriver-57.0.2987.98-8.1

chromedriver-debuginfo-57.0.2987.98-8.1

chromium-57.0.2987.98-8.1

chromium-debuginfo-57.0.2987.98-8.1

chromium-debugsource-57.0.2987.98-8.1

References

https://www.suse.com/security/cve/CVE-2017-5029.html

https://www.suse.com/security/cve/CVE-2017-5030.html

https://www.suse.com/security/cve/CVE-2017-5031.html

https://www.suse.com/security/cve/CVE-2017-5032.html

https://www.suse.com/security/cve/CVE-2017-5033.html

https://www.suse.com/security/cve/CVE-2017-5034.html

https://www.suse.com/security/cve/CVE-2017-5035.html

https://www.suse.com/security/cve/CVE-2017-5036.html

https://www.suse.com/security/cve/CVE-2017-5037.html

https://www.suse.com/security/cve/CVE-2017-5038.html

https://www.suse.com/security/cve/CVE-2017-5039.html

https://www.suse.com/security/cve/CVE-2017-5040.html

https://www.suse.com/security/cve/CVE-2017-5041.html

https://www.suse.com/security/cve/CVE-2017-5042.html

https://www.suse.com/security/cve/CVE-2017-5043.html

https://www.suse.com/security/cve/CVE-2017-5044.html

https://www.suse.com/security/cve/CVE-2017-5045.html

https://www.suse.com/security/cve/CVE-2017-5046.html

https://bugzilla.suse.com/1028848

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2017:0740-1
Rating: important
Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 .

Topics%20covered

Topics Covered

security advisory security update important software fix SUSE Chromium safety enhancement

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here