Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-18356 (GCVE-0-2018-18356)
Vulnerability from cvelistv5 – Published: 2018-12-11 15:00 – Updated: 2024-08-05 11:08
VLAI
EPSS
Summary
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Severity
No CVSS data available.
CWE
- Use after free
Assigner
References
18 references
Impacted products
Date Public
2018-12-11 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T11:08:21.499Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2019:0373",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"name": "USN-3897-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://crbug.com/883666"
},
{
"name": "[debian-lts-announce] 20190215 [SECURITY] [DLA 1677-1] firefox-esr security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"name": "GLSA-201903-04",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"name": "USN-3896-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"name": "[debian-lts-announce] 20190216 [SECURITY] [DLA 1678-1] thunderbird security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"name": "RHSA-2019:0374",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"name": "DSA-4391",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"name": "RHSA-2018:3803",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"name": "DSA-4392",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"name": "DSA-4352",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"name": "106084",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/106084"
},
{
"name": "GLSA-201904-07",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"name": "openSUSE-SU-2019:1162",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"name": "RHSA-2019:1144",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"name": "GLSA-201908-18",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201908-18"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Chrome",
"vendor": "Google",
"versions": [
{
"lessThan": "71.0.3578.80",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"datePublic": "2018-12-11T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Use after free",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-08-17T20:06:09.000Z",
"orgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"shortName": "Chrome"
},
"references": [
{
"name": "RHSA-2019:0373",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"name": "USN-3897-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://crbug.com/883666"
},
{
"name": "[debian-lts-announce] 20190215 [SECURITY] [DLA 1677-1] firefox-esr security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"name": "GLSA-201903-04",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"name": "USN-3896-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"name": "[debian-lts-announce] 20190216 [SECURITY] [DLA 1678-1] thunderbird security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"name": "RHSA-2019:0374",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"name": "DSA-4391",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"name": "RHSA-2018:3803",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"name": "DSA-4392",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"name": "DSA-4352",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"name": "106084",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/106084"
},
{
"name": "GLSA-201904-07",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"name": "openSUSE-SU-2019:1162",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"name": "RHSA-2019:1144",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"name": "GLSA-201908-18",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201908-18"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2018-18356",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Chrome",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "71.0.3578.80"
}
]
}
}
]
},
"vendor_name": "Google"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use after free"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2019:0373",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"name": "USN-3897-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"name": "https://crbug.com/883666",
"refsource": "MISC",
"url": "https://crbug.com/883666"
},
{
"name": "[debian-lts-announce] 20190215 [SECURITY] [DLA 1677-1] firefox-esr security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"name": "GLSA-201903-04",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"name": "USN-3896-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"name": "[debian-lts-announce] 20190216 [SECURITY] [DLA 1678-1] thunderbird security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"name": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html",
"refsource": "CONFIRM",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"name": "RHSA-2019:0374",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"name": "DSA-4391",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"name": "RHSA-2018:3803",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"name": "DSA-4392",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"name": "DSA-4352",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"name": "106084",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/106084"
},
{
"name": "GLSA-201904-07",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"name": "openSUSE-SU-2019:1162",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"name": "RHSA-2019:1144",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"name": "GLSA-201908-18",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201908-18"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28",
"assignerShortName": "Chrome",
"cveId": "CVE-2018-18356",
"datePublished": "2018-12-11T15:00:00.000Z",
"dateReserved": "2018-10-15T00:00:00.000Z",
"dateUpdated": "2024-08-05T11:08:21.499Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-18356",
"date": "2026-05-29",
"epss": "0.02397",
"percentile": "0.85296"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-18356\",\"sourceIdentifier\":\"chrome-cve-admin@google.com\",\"published\":\"2018-12-11T16:29:01.980\",\"lastModified\":\"2024-11-21T03:55:46.940\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\"},{\"lang\":\"es\",\"value\":\"Un desbordamiento de enteros en el manejo de rutas conduce a un uso de memoria previamente liberada en Skia en Google Chrome en versiones anteriores a la 71.0.3578.80 permit\u00eda que un atacante remoto pudiese explotar una corrupci\u00f3n de memoria din\u00e1mica (heap) mediante una p\u00e1gina HTML manipulada.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"},{\"lang\":\"en\",\"value\":\"CWE-416\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"71.0.3578.80\",\"matchCriteriaId\":\"CEC84646-AE0E-403B-903F-35E2D073FDC9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"B5A6F2F3-4894-4392-8296-3B8DD2679084\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C068A4-3780-4EAB-A937-6082DF847564\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B353CE99-D57C-465B-AAB0-73EF581127D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://www.securityfocus.com/bid/106084\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3803\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:0373\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:0374\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1144\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://crbug.com/883666\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://security.gentoo.org/glsa/201903-04\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://security.gentoo.org/glsa/201904-07\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://security.gentoo.org/glsa/201908-18\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://usn.ubuntu.com/3896-1/\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://usn.ubuntu.com/3897-1/\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4352\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4391\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4392\",\"source\":\"chrome-cve-admin@google.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/106084\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3803\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:0373\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:0374\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:1144\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://crbug.com/883666\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201903-04\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201904-07\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201908-18\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/3896-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/3897-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2018/dsa-4352\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4391\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2019/dsa-4392\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Title
Уязвимость графической библиотеки Skia веб-браузера Google Chrome, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
Description
Уязвимость графической библиотеки Skia веб-браузера Google Chrome вызвана целочисленным переполнением. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации с помощью специально созданной HTML-страницы
Severity
Vendor
Canonical Ltd., Red Hat Inc., АО «ИВК», Сообщество свободного программного обеспечения, Novell Inc., Google Inc, ООО «РусБИТех-Астра»
Software Name
Ubuntu, Red Hat Enterprise Linux, Альт Линукс СПТ (запись в едином реестре российских программ №9), Debian GNU/Linux, OpenSUSE Leap, Google Chrome, Astra Linux Special Edition (запись в едином реестре российских программ №369), Альт 8 СП Рабочая станция
Software Version
14.04 LTS (Ubuntu), 6 (Red Hat Enterprise Linux), 7 (Red Hat Enterprise Linux), 16.04 LTS (Ubuntu), 7.0 (Альт Линукс СПТ), 9 (Debian GNU/Linux), 42.3 (OpenSUSE Leap), 18.04 LTS (Ubuntu), 18.10 (Ubuntu), до 71.0.3578.80 (Google Chrome), 1.6 «Смоленск» (Astra Linux Special Edition), - (Альт 8 СП Рабочая станция), 15.0 (OpenSUSE Leap), 8 (Debian GNU/Linux)
Possible Mitigations
Использование рекомендаций:
Для Google:
https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html
Для OpenSUSE:
https://www.suse.com/security/cve/CVE-2018-18356/
Для Astra Linux:
https://wiki.astralinux.ru/pages/viewpage.action?pageId=57444186
Для Debian:
https://www.debian.org/security/2018/dsa-4352
https://www.debian.org/security/2019/dsa-4391
https://www.debian.org/security/2019/dsa-4392
https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html
https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html
Для Ubuntu:
https://usn.ubuntu.com/3896-1/
https://usn.ubuntu.com/3897-1/
Для Red Hat:
https://access.redhat.com/security/cve/CVE-2018-18356
Для продуктов BaseALT:
https://cve.basealt.ru/
Reference
http://www.securityfocus.com/bid/106084
https://access.redhat.com/errata/RHSA-2018:3803
https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html
https://wiki.astralinux.ru/pages/viewpage.action?pageId=57444186
CWE
CWE-190, CWE-416
{
"CVSS 2.0": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Canonical Ltd., Red Hat Inc., \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Novell Inc., Google Inc, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "14.04 LTS (Ubuntu), 6 (Red Hat Enterprise Linux), 7 (Red Hat Enterprise Linux), 16.04 LTS (Ubuntu), 7.0 (\u0410\u043b\u044c\u0442 \u041b\u0438\u043d\u0443\u043a\u0441 \u0421\u041f\u0422), 9 (Debian GNU/Linux), 42.3 (OpenSUSE Leap), 18.04 LTS (Ubuntu), 18.10 (Ubuntu), \u0434\u043e 71.0.3578.80 (Google Chrome), 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), - (\u0410\u043b\u044c\u0442 8 \u0421\u041f \u0420\u0430\u0431\u043e\u0447\u0430\u044f \u0441\u0442\u0430\u043d\u0446\u0438\u044f), 15.0 (OpenSUSE Leap), 8 (Debian GNU/Linux)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439: \n\u0414\u043b\u044f Google:\nhttps://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html\n\n\u0414\u043b\u044f OpenSUSE:\nhttps://www.suse.com/security/cve/CVE-2018-18356/\n\n\u0414\u043b\u044f Astra Linux:\nhttps://wiki.astralinux.ru/pages/viewpage.action?pageId=57444186\n\n\u0414\u043b\u044f Debian:\nhttps://www.debian.org/security/2018/dsa-4352\nhttps://www.debian.org/security/2019/dsa-4391\nhttps://www.debian.org/security/2019/dsa-4392\nhttps://lists.debian.org/debian-lts-announce/2019/02/msg00023.html\nhttps://lists.debian.org/debian-lts-announce/2019/02/msg00024.html\n\n\u0414\u043b\u044f Ubuntu:\nhttps://usn.ubuntu.com/3896-1/\nhttps://usn.ubuntu.com/3897-1/\n\n\u0414\u043b\u044f Red Hat:\nhttps://access.redhat.com/security/cve/CVE-2018-18356\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 BaseALT:\nhttps://cve.basealt.ru/",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.09.2018",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "10.01.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-00013",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-18356",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Ubuntu, Red Hat Enterprise Linux, \u0410\u043b\u044c\u0442 \u041b\u0438\u043d\u0443\u043a\u0441 \u0421\u041f\u0422 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21169), Debian GNU/Linux, OpenSUSE Leap, Google Chrome, Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u043b\u044c\u0442 8 \u0421\u041f \u0420\u0430\u0431\u043e\u0447\u0430\u044f \u0441\u0442\u0430\u043d\u0446\u0438\u044f",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Canonical Ltd. Ubuntu 14.04 LTS , Red Hat Inc. Red Hat Enterprise Linux 6 , Red Hat Inc. Red Hat Enterprise Linux 7 , Canonical Ltd. Ubuntu 16.04 LTS , \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u043b\u044c\u0442 \u041b\u0438\u043d\u0443\u043a\u0441 \u0421\u041f\u0422 7.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21169), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 9 , Novell Inc. OpenSUSE Leap 42.3 , Canonical Ltd. Ubuntu 18.04 LTS , Canonical Ltd. Ubuntu 18.10 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u043b\u044c\u0442 8 \u0421\u041f \u0420\u0430\u0431\u043e\u0447\u0430\u044f \u0441\u0442\u0430\u043d\u0446\u0438\u044f - , Novell Inc. OpenSUSE Leap 15.0 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 8 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 Skia \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Google Chrome, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0426\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u043e\u0435 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u0438\u043b\u0438 \u0446\u0438\u043a\u043b\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0441\u0434\u0432\u0438\u0433 (CWE-190), \u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f (CWE-416)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0433\u0440\u0430\u0444\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 Skia \u0432\u0435\u0431-\u0431\u0440\u0430\u0443\u0437\u0435\u0440\u0430 Google Chrome \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u0446\u0435\u043b\u043e\u0447\u0438\u0441\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043e\u043a\u0430\u0437\u0430\u0442\u044c \u0432\u043e\u0437\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043d\u0430 \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0441\u0442\u044c, \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0439 HTML-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "http://www.securityfocus.com/bid/106084\n\nhttps://access.redhat.com/errata/RHSA-2018:3803\n\nhttps://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html\nhttps://wiki.astralinux.ru/pages/viewpage.action?pageId=57444186",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-190, CWE-416",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,8)"
}
CERTFR-2018-AVI-585
Vulnerability from certfr_avis - Published: 2018-12-05 - Updated: 2018-12-05
De multiples vulnérabilités ont été découvertes dans Google Chrome. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Chrome toutes versions ant\u00e9rieures \u00e0 71.0.3578.80",
"product": {
"name": "Chrome",
"vendor": {
"name": "Google",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-18352",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18352"
},
{
"name": "CVE-2018-18340",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18340"
},
{
"name": "CVE-2018-18359",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18359"
},
{
"name": "CVE-2018-18341",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18341"
},
{
"name": "CVE-2018-18348",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18348"
},
{
"name": "CVE-2018-18346",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18346"
},
{
"name": "CVE-2018-18357",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18357"
},
{
"name": "CVE-2018-18347",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18347"
},
{
"name": "CVE-2018-17480",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17480"
},
{
"name": "CVE-2018-18338",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18338"
},
{
"name": "CVE-2018-18349",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18349"
},
{
"name": "CVE-2018-18335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18335"
},
{
"name": "CVE-2018-17481",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17481"
},
{
"name": "CVE-2018-18342",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18342"
},
{
"name": "CVE-2018-18351",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18351"
},
{
"name": "CVE-2018-18337",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18337"
},
{
"name": "CVE-2018-18358",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18358"
},
{
"name": "CVE-2018-18336",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18336"
},
{
"name": "CVE-2018-18344",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18344"
},
{
"name": "CVE-2018-18339",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18339"
},
{
"name": "CVE-2018-18356",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18356"
},
{
"name": "CVE-2018-18355",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18355"
},
{
"name": "CVE-2018-18354",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18354"
},
{
"name": "CVE-2018-18343",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18343"
},
{
"name": "CVE-2018-18353",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18353"
},
{
"name": "CVE-2018-18350",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18350"
},
{
"name": "CVE-2018-18345",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18345"
}
],
"initial_release_date": "2018-12-05T00:00:00",
"last_revision_date": "2018-12-05T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-585",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-12-05T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Google Chrome.\nElles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non\nsp\u00e9cifi\u00e9 par l\u0027\u00e9diteur et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Chrome",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google du 4 d\u00e9cembre 2018",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html?utm_source=feedburner\u0026utm_medium=feed\u0026utm_campaign=Feed%3A+GoogleChromeReleases+%28Google+Chrome+Releases%29"
}
]
}
CERTFR-2019-AVI-058
Vulnerability from certfr_avis - Published: 2019-02-13 - Updated: 2019-02-14
De multiples vulnérabilités ont été découvertes dans Mozilla Firefox. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Firefox versions ant\u00e9rieures \u00e0 65.0.1",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
},
{
"description": "Firefox ESR versions ant\u00e9rieures \u00e0 60.5.1",
"product": {
"name": "Firefox",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-18511",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18511"
},
{
"name": "CVE-2018-18335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18335"
},
{
"name": "CVE-2018-18356",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18356"
},
{
"name": "CVE-2019-5785",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5785"
}
],
"initial_release_date": "2019-02-13T00:00:00",
"last_revision_date": "2019-02-14T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2019-05\u00a0du 12 f\u00e9vrier 2019",
"url": "http://www.mozilla.org/en-US/security/advisories/mfsa2019-05/"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2019-04\u00a0du 12 f\u00e9vrier 2019",
"url": "http://www.mozilla.org/en-US/security/advisories/mfsa2019-04/"
}
],
"reference": "CERTFR-2019-AVI-058",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-02-13T00:00:00.000000"
},
{
"description": "Correction du num\u00e9ro de version de Firefox ESR",
"revision_date": "2019-02-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla Firefox.\nElles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Firefox",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2019-05 du 12 f\u00e9vrier 2019",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2019-04 du 12 f\u00e9vrier 2019",
"url": null
}
]
}
CERTFR-2019-AVI-068
Vulnerability from certfr_avis - Published: 2019-02-15 - Updated: 2019-02-15
De multiples vulnérabilités ont été découvertes dans Mozilla Thunderbird. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Mozilla | Thunderbird | Thunderbird versions antérieures à 60.5.1 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Thunderbird versions ant\u00e9rieures \u00e0 60.5.1",
"product": {
"name": "Thunderbird",
"vendor": {
"name": "Mozilla",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-18335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18335"
},
{
"name": "CVE-2018-18356",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18356"
},
{
"name": "CVE-2019-5785",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5785"
},
{
"name": "CVE-2018-18509",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18509"
}
],
"initial_release_date": "2019-02-15T00:00:00",
"last_revision_date": "2019-02-15T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-068",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-02-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Mozilla\nThunderbird. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution\nde code arbitraire \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Mozilla Thunderbird",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Mozilla mfsa2019-06 du 14 f\u00e9vrier 2019",
"url": "https://www.mozilla.org/en-US/security/advisories/mfsa2019-06/"
}
]
}
Title
Google Chrome Skia堆损坏漏洞
Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Skia是其中的一个开放源码的2D图形库,能够提供可在各种硬件和软件平台上工作的常见API。
Google Chrome 71.0.3578.80之前版本中的Skia存在安全漏洞。远程攻击者可借助特制的HTML页面利用该漏洞造成堆损坏(整数溢出和内存错误引用)。
Severity
中
Patch Name
Google Chrome Skia堆损坏漏洞的补丁
Patch Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Skia是其中的一个开放源码的2D图形库,能够提供可在各种硬件和软件平台上工作的常见API。
Google Chrome 71.0.3578.80之前版本中的Skia存在安全漏洞。远程攻击者可借助特制的HTML页面利用该漏洞造成堆损坏(整数溢出和内存错误引用)。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://chromereleases.googleblog.com/
Reference
https://chromereleases.googleblog.com/
https://www.securityfocus.com/bid/106084
Impacted products
| Name | Google Chrome <71.0.3578.80 |
|---|
{
"cves": {
"cve": [
{
"cveNumber": "CVE-2018-18356",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18356"
},
{
"cveNumber": "106084"
}
]
},
"description": "Google Chrome\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3eWeb\u6d4f\u89c8\u5668\u3002Skia\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u5f00\u653e\u6e90\u7801\u76842D\u56fe\u5f62\u5e93\uff0c\u80fd\u591f\u63d0\u4f9b\u53ef\u5728\u5404\u79cd\u786c\u4ef6\u548c\u8f6f\u4ef6\u5e73\u53f0\u4e0a\u5de5\u4f5c\u7684\u5e38\u89c1API\u3002\n\nGoogle Chrome 71.0.3578.80\u4e4b\u524d\u7248\u672c\u4e2d\u7684Skia\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684HTML\u9875\u9762\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u5806\u635f\u574f\uff08\u6574\u6570\u6ea2\u51fa\u548c\u5185\u5b58\u9519\u8bef\u5f15\u7528\uff09\u3002",
"discovererName": "Guang Gong of Alpha Team, Qihoo 360 via Tianfu Cup, Anonymous, Huyna at Viettel Cyber Security, cloudfuzzer, Zhe Jin,Luyao Liu from Chengdu Security Response Center of Qihoo 360 Technology, Tran Tien Hung (@hungtt28) of Viettel Cyber Security, Jann Horn of",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5:\r\nhttps://chromereleases.googleblog.com/",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-01576",
"openTime": "2019-01-11",
"patchDescription": "Google Chrome\u662f\u7f8e\u56fd\u8c37\u6b4c\uff08Google\uff09\u516c\u53f8\u5f00\u53d1\u7684\u4e00\u6b3eWeb\u6d4f\u89c8\u5668\u3002Skia\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u5f00\u653e\u6e90\u7801\u76842D\u56fe\u5f62\u5e93\uff0c\u80fd\u591f\u63d0\u4f9b\u53ef\u5728\u5404\u79cd\u786c\u4ef6\u548c\u8f6f\u4ef6\u5e73\u53f0\u4e0a\u5de5\u4f5c\u7684\u5e38\u89c1API\u3002\r\n\r\nGoogle Chrome 71.0.3578.80\u4e4b\u524d\u7248\u672c\u4e2d\u7684Skia\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684HTML\u9875\u9762\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u5806\u635f\u574f\uff08\u6574\u6570\u6ea2\u51fa\u548c\u5185\u5b58\u9519\u8bef\u5f15\u7528\uff09\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Google Chrome Skia\u5806\u635f\u574f\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Google Chrome \u003c71.0.3578.80"
},
"referenceLink": "https://chromereleases.googleblog.com/\r\nhttps://www.securityfocus.com/bid/106084",
"serverity": "\u4e2d",
"submitTime": "2018-12-06",
"title": "Google Chrome Skia\u5806\u635f\u574f\u6f0f\u6d1e"
}
FKIE_CVE-2018-18356
Vulnerability from fkie_nvd - Published: 2018-12-11 16:29 - Updated: 2024-11-21 03:55
Severity
Summary
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| chrome | * | ||
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 18.10 | |
| redhat | enterprise_linux_desktop | 6.0 | |
| redhat | enterprise_linux_desktop | 7.0 | |
| redhat | enterprise_linux_server | 6.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_server_aus | 7.6 | |
| redhat | enterprise_linux_server_eus | 7.6 | |
| redhat | enterprise_linux_server_tus | 7.6 | |
| redhat | enterprise_linux_workstation | 6.0 | |
| redhat | enterprise_linux_workstation | 7.0 | |
| opensuse | leap | 15.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CEC84646-AE0E-403B-903F-35E2D073FDC9",
"versionEndExcluding": "71.0.3578.80",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "33C068A4-3780-4EAB-A937-6082DF847564",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."
},
{
"lang": "es",
"value": "Un desbordamiento de enteros en el manejo de rutas conduce a un uso de memoria previamente liberada en Skia en Google Chrome en versiones anteriores a la 71.0.3578.80 permit\u00eda que un atacante remoto pudiese explotar una corrupci\u00f3n de memoria din\u00e1mica (heap) mediante una p\u00e1gina HTML manipulada."
}
],
"id": "CVE-2018-18356",
"lastModified": "2024-11-21T03:55:46.940",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-12-11T16:29:01.980",
"references": [
{
"source": "chrome-cve-admin@google.com",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "http://www.securityfocus.com/bid/106084"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://crbug.com/883666"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://security.gentoo.org/glsa/201908-18"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"source": "chrome-cve-admin@google.com",
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/106084"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://crbug.com/883666"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201908-18"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2019/dsa-4392"
}
],
"sourceIdentifier": "chrome-cve-admin@google.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
},
{
"lang": "en",
"value": "CWE-416"
},
{
"lang": "en",
"value": "CWE-787"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-X2CW-GRR7-XM95
Vulnerability from github – Published: 2022-05-13 01:19 – Updated: 2022-05-13 01:19
VLAI
Details
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Severity
8.8 (High)
{
"affected": [],
"aliases": [
"CVE-2018-18356"
],
"database_specific": {
"cwe_ids": [
"CWE-787"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-12-11T16:29:00Z",
"severity": "HIGH"
},
"details": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"id": "GHSA-x2cw-grr7-xm95",
"modified": "2022-05-13T01:19:36Z",
"published": "2022-05-13T01:19:36Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18356"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3897-1"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3896-1"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201908-18"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"type": "WEB",
"url": "https://crbug.com/883666"
},
{
"type": "WEB",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/106084"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-18356
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-18356",
"description": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"id": "GSD-2018-18356",
"references": [
"https://www.suse.com/security/cve/CVE-2018-18356.html",
"https://www.debian.org/security/2019/dsa-4392",
"https://www.debian.org/security/2019/dsa-4391",
"https://www.debian.org/security/2018/dsa-4352",
"https://access.redhat.com/errata/RHSA-2019:1144",
"https://access.redhat.com/errata/RHSA-2019:0681",
"https://access.redhat.com/errata/RHSA-2019:0680",
"https://access.redhat.com/errata/RHSA-2019:0374",
"https://access.redhat.com/errata/RHSA-2019:0373",
"https://access.redhat.com/errata/RHSA-2018:3803",
"https://ubuntu.com/security/CVE-2018-18356",
"https://advisories.mageia.org/CVE-2018-18356.html",
"https://security.archlinux.org/CVE-2018-18356",
"https://linux.oracle.com/cve/CVE-2018-18356.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-18356"
],
"details": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"id": "GSD-2018-18356",
"modified": "2023-12-13T01:22:36.401862Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2018-18356",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Chrome",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "71.0.3578.80"
}
]
}
}
]
},
"vendor_name": "Google"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use after free"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2019:0373",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"name": "USN-3897-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"name": "https://crbug.com/883666",
"refsource": "MISC",
"url": "https://crbug.com/883666"
},
{
"name": "[debian-lts-announce] 20190215 [SECURITY] [DLA 1677-1] firefox-esr security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"name": "GLSA-201903-04",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"name": "USN-3896-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"name": "[debian-lts-announce] 20190216 [SECURITY] [DLA 1678-1] thunderbird security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"name": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html",
"refsource": "CONFIRM",
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"name": "RHSA-2019:0374",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"name": "DSA-4391",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"name": "RHSA-2018:3803",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"name": "DSA-4392",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"name": "DSA-4352",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"name": "106084",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/106084"
},
{
"name": "GLSA-201904-07",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"name": "openSUSE-SU-2019:1162",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"name": "RHSA-2019:1144",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"name": "GLSA-201908-18",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201908-18"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "71.0.3578.80",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security@google.com",
"ID": "CVE-2018-18356"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-787"
},
{
"lang": "en",
"value": "CWE-190"
},
{
"lang": "en",
"value": "CWE-416"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://crbug.com/883666",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Exploit",
"Vendor Advisory"
],
"url": "https://crbug.com/883666"
},
{
"name": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html",
"refsource": "CONFIRM",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html"
},
{
"name": "DSA-4352",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4352"
},
{
"name": "RHSA-2018:3803",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3803"
},
{
"name": "106084",
"refsource": "BID",
"tags": [
"VDB Entry",
"Third Party Advisory"
],
"url": "http://www.securityfocus.com/bid/106084"
},
{
"name": "DSA-4391",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2019/dsa-4391"
},
{
"name": "[debian-lts-announce] 20190215 [SECURITY] [DLA 1677-1] firefox-esr security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00023.html"
},
{
"name": "DSA-4392",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2019/dsa-4392"
},
{
"name": "[debian-lts-announce] 20190216 [SECURITY] [DLA 1678-1] thunderbird security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00024.html"
},
{
"name": "RHSA-2019:0374",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0374"
},
{
"name": "RHSA-2019:0373",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:0373"
},
{
"name": "USN-3897-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3897-1/"
},
{
"name": "USN-3896-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3896-1/"
},
{
"name": "GLSA-201903-04",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201903-04"
},
{
"name": "GLSA-201904-07",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/201904-07"
},
{
"name": "openSUSE-SU-2019:1162",
"refsource": "SUSE",
"tags": [
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html"
},
{
"name": "RHSA-2019:1144",
"refsource": "REDHAT",
"tags": [],
"url": "https://access.redhat.com/errata/RHSA-2019:1144"
},
{
"name": "GLSA-201908-18",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/201908-18"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2020-08-24T17:37Z",
"publishedDate": "2018-12-11T16:29Z"
}
}
}
OPENSUSE-SU-2018:4143-1
Vulnerability from csaf_opensuse - Published: 2018-12-15 09:27 - Updated: 2018-12-15 09:27Summary
Security update for Chromium
Severity
Important
Notes
Title of the patch: Security update for Chromium
Description of the patch: This update to Chromium 71.0.3578.98 fixes the following issues:
Security issues fixed (boo#1118529):
- CVE-2018-17480: Out of bounds write in V8
- CVE-2018-17481: Use after frees in PDFium
- CVE-2018-18335: Heap buffer overflow in Skia
- CVE-2018-18336: Use after free in PDFium
- CVE-2018-18337: Use after free in Blink
- CVE-2018-18338: Heap buffer overflow in Canvas
- CVE-2018-18339: Use after free in WebAudio
- CVE-2018-18340: Use after free in MediaRecorder
- CVE-2018-18341: Heap buffer overflow in Blink
- CVE-2018-18342: Out of bounds write in V8
- CVE-2018-18343: Use after free in Skia
- CVE-2018-18344: Inappropriate implementation in Extensions
- Multiple issues in SQLite via WebSQL
- CVE-2018-18345: Inappropriate implementation in Site Isolation
- CVE-2018-18346: Incorrect security UI in Blink
- CVE-2018-18347: Inappropriate implementation in Navigation
- CVE-2018-18348: Inappropriate implementation in Omnibox
- CVE-2018-18349: Insufficient policy enforcement in Blink
- CVE-2018-18350: Insufficient policy enforcement in Blink
- CVE-2018-18351: Insufficient policy enforcement in Navigation
- CVE-2018-18352: Inappropriate implementation in Media
- CVE-2018-18353: Inappropriate implementation in Network Authentication
- CVE-2018-18354: Insufficient data validation in Shell Integration
- CVE-2018-18355: Insufficient policy enforcement in URL Formatter
- CVE-2018-18356: Use after free in Skia
- CVE-2018-18357: Insufficient policy enforcement in URL Formatter
- CVE-2018-18358: Insufficient policy enforcement in Proxy
- CVE-2018-18359: Out of bounds read in V8
- Inappropriate implementation in PDFium
- Use after free in Extensions
- Inappropriate implementation in Navigation
- Insufficient policy enforcement in Navigation
- Insufficient policy enforcement in URL Formatter
- Various fixes from internal audits, fuzzing and other initiatives
- CVE-2018-17481: Use after free in PDFium (boo#1119364)
The following changes are included:
- advertisements posing as error messages are now blocked
- Automatic playing of content at page load mostly disabled
- New JavaScript API for relative time display
Patchnames: openSUSE-2018-1558
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.3 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.7 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
115 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for Chromium",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update to Chromium 71.0.3578.98 fixes the following issues:\n\nSecurity issues fixed (boo#1118529):\n\n- CVE-2018-17480: Out of bounds write in V8\n- CVE-2018-17481: Use after frees in PDFium\n- CVE-2018-18335: Heap buffer overflow in Skia\n- CVE-2018-18336: Use after free in PDFium\n- CVE-2018-18337: Use after free in Blink\n- CVE-2018-18338: Heap buffer overflow in Canvas\n- CVE-2018-18339: Use after free in WebAudio\n- CVE-2018-18340: Use after free in MediaRecorder\n- CVE-2018-18341: Heap buffer overflow in Blink\n- CVE-2018-18342: Out of bounds write in V8\n- CVE-2018-18343: Use after free in Skia\n- CVE-2018-18344: Inappropriate implementation in Extensions\n- Multiple issues in SQLite via WebSQL\n- CVE-2018-18345: Inappropriate implementation in Site Isolation\n- CVE-2018-18346: Incorrect security UI in Blink\n- CVE-2018-18347: Inappropriate implementation in Navigation\n- CVE-2018-18348: Inappropriate implementation in Omnibox\n- CVE-2018-18349: Insufficient policy enforcement in Blink\n- CVE-2018-18350: Insufficient policy enforcement in Blink\n- CVE-2018-18351: Insufficient policy enforcement in Navigation\n- CVE-2018-18352: Inappropriate implementation in Media\n- CVE-2018-18353: Inappropriate implementation in Network Authentication\n- CVE-2018-18354: Insufficient data validation in Shell Integration\n- CVE-2018-18355: Insufficient policy enforcement in URL Formatter\n- CVE-2018-18356: Use after free in Skia\n- CVE-2018-18357: Insufficient policy enforcement in URL Formatter\n- CVE-2018-18358: Insufficient policy enforcement in Proxy\n- CVE-2018-18359: Out of bounds read in V8\n- Inappropriate implementation in PDFium\n- Use after free in Extensions\n- Inappropriate implementation in Navigation\n- Insufficient policy enforcement in Navigation\n- Insufficient policy enforcement in URL Formatter\n- Various fixes from internal audits, fuzzing and other initiatives\n- CVE-2018-17481: Use after free in PDFium (boo#1119364)\n\nThe following changes are included:\n\n- advertisements posing as error messages are now blocked\n- Automatic playing of content at page load mostly disabled\n- New JavaScript API for relative time display\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2018-1558",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2018_4143-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2018:4143-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46/#PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2018:4143-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46/#PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46"
},
{
"category": "self",
"summary": "SUSE Bug 1118529",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "self",
"summary": "SUSE Bug 1119364",
"url": "https://bugzilla.suse.com/1119364"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17480 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17480/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-17481 page",
"url": "https://www.suse.com/security/cve/CVE-2018-17481/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18335 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18336 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18336/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18337 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18338 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18339 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18340 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18341 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18342 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18343 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18344 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18345 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18346 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18347 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18348 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18348/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18349 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18350 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18351 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18352 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18353 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18354 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18355 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18356 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18357 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18358 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18359 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18359/"
}
],
"title": "Security update for Chromium",
"tracking": {
"current_release_date": "2018-12-15T09:27:33Z",
"generator": {
"date": "2018-12-15T09:27:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2018:4143-1",
"initial_release_date": "2018-12-15T09:27:33Z",
"revision_history": [
{
"date": "2018-12-15T09:27:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "chromedriver-71.0.3578.98-80.1.x86_64",
"product": {
"name": "chromedriver-71.0.3578.98-80.1.x86_64",
"product_id": "chromedriver-71.0.3578.98-80.1.x86_64"
}
},
{
"category": "product_version",
"name": "chromium-71.0.3578.98-80.1.x86_64",
"product": {
"name": "chromium-71.0.3578.98-80.1.x86_64",
"product_id": "chromium-71.0.3578.98-80.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Package Hub 12 SP2",
"product": {
"name": "SUSE Package Hub 12 SP2",
"product_id": "SUSE Package Hub 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "chromedriver-71.0.3578.98-80.1.x86_64 as component of SUSE Package Hub 12 SP2",
"product_id": "SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64"
},
"product_reference": "chromedriver-71.0.3578.98-80.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "chromium-71.0.3578.98-80.1.x86_64 as component of SUSE Package Hub 12 SP2",
"product_id": "SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
},
"product_reference": "chromium-71.0.3578.98-80.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-17480",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17480"
}
],
"notes": [
{
"category": "general",
"text": "Execution of user supplied Javascript during array deserialization leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17480",
"url": "https://www.suse.com/security/cve/CVE-2018-17480"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-17480",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-17480",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-17480"
},
{
"cve": "CVE-2018-17481",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-17481"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect object lifecycle handling in PDFium in Google Chrome prior to 71.0.3578.98 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-17481",
"url": "https://www.suse.com/security/cve/CVE-2018-17481"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-17481",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1119364 for CVE-2018-17481",
"url": "https://bugzilla.suse.com/1119364"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-17481",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-17481"
},
{
"cve": "CVE-2018-18335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18335"
}
],
"notes": [
{
"category": "general",
"text": "Heap buffer overflow in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18335",
"url": "https://www.suse.com/security/cve/CVE-2018-18335"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18335",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18335",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18335"
},
{
"cve": "CVE-2018-18336",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18336"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect object lifecycle in PDFium in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18336",
"url": "https://www.suse.com/security/cve/CVE-2018-18336"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18336",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18336",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18336"
},
{
"cve": "CVE-2018-18337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18337"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of stylesheets leading to a use after free in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18337",
"url": "https://www.suse.com/security/cve/CVE-2018-18337"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18337",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18337",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18337"
},
{
"cve": "CVE-2018-18338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18338"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect, thread-unsafe use of SkImage in Canvas in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18338",
"url": "https://www.suse.com/security/cve/CVE-2018-18338"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18338",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18338",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18338"
},
{
"cve": "CVE-2018-18339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18339"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect object lifecycle in WebAudio in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18339",
"url": "https://www.suse.com/security/cve/CVE-2018-18339"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18339",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18339",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18339"
},
{
"cve": "CVE-2018-18340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18340"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect object lifecycle in MediaRecorder in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18340",
"url": "https://www.suse.com/security/cve/CVE-2018-18340"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18340",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18340",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18340"
},
{
"cve": "CVE-2018-18341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18341"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow leading to a heap buffer overflow in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18341",
"url": "https://www.suse.com/security/cve/CVE-2018-18341"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18341",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18341",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18341"
},
{
"cve": "CVE-2018-18342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18342"
}
],
"notes": [
{
"category": "general",
"text": "Execution of user supplied Javascript during object deserialization can update object length leading to an out of bounds write in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18342",
"url": "https://www.suse.com/security/cve/CVE-2018-18342"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18342",
"url": "https://bugzilla.suse.com/1118529"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18342"
},
{
"cve": "CVE-2018-18343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18343"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handing of paths leading to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18343",
"url": "https://www.suse.com/security/cve/CVE-2018-18343"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18343",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18343",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18343"
},
{
"cve": "CVE-2018-18344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18344"
}
],
"notes": [
{
"category": "general",
"text": "Inappropriate allowance of the setDownloadBehavior devtools protocol feature in Extensions in Google Chrome prior to 71.0.3578.80 allowed a remote attacker with control of an installed extension to access files on the local file system via a crafted Chrome Extension.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18344",
"url": "https://www.suse.com/security/cve/CVE-2018-18344"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18344",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18344",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18344"
},
{
"cve": "CVE-2018-18345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18345"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of blob URLS in Site Isolation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker who had compromised the renderer process to bypass site isolation protections via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18345",
"url": "https://www.suse.com/security/cve/CVE-2018-18345"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18345",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18345",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18345"
},
{
"cve": "CVE-2018-18346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18346"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of alert box display in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to present confusing browser UI via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18346",
"url": "https://www.suse.com/security/cve/CVE-2018-18346"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18346",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18346",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18346"
},
{
"cve": "CVE-2018-18347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18347"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of failed navigations with invalid URLs in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to trick a user into executing javascript in an arbitrary origin via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18347",
"url": "https://www.suse.com/security/cve/CVE-2018-18347"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18347",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18347",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18347"
},
{
"cve": "CVE-2018-18348",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18348"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of bidirectional domain names with RTL characters in Omnibox in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18348",
"url": "https://www.suse.com/security/cve/CVE-2018-18348"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18348",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18348",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18348"
},
{
"cve": "CVE-2018-18349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18349"
}
],
"notes": [
{
"category": "general",
"text": "Remote frame navigations was incorrectly permitted to local resources in Blink in Google Chrome prior to 71.0.3578.80 allowed an attacker who convinced a user to install a malicious extension to access files on the local file system via a crafted Chrome Extension.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18349",
"url": "https://www.suse.com/security/cve/CVE-2018-18349"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18349",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18349",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18349"
},
{
"cve": "CVE-2018-18350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18350"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of CSP enforcement during navigations in Blink in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass content security policy via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18350",
"url": "https://www.suse.com/security/cve/CVE-2018-18350"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18350",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18350",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18350"
},
{
"cve": "CVE-2018-18351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18351"
}
],
"notes": [
{
"category": "general",
"text": "Lack of proper validation of ancestor frames site when sending lax cookies in Navigation in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass SameSite cookie policy via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18351",
"url": "https://www.suse.com/security/cve/CVE-2018-18351"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18351",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18351",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18351"
},
{
"cve": "CVE-2018-18352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18352"
}
],
"notes": [
{
"category": "general",
"text": "Service works could inappropriately gain access to cross origin audio in Media in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to bypass same origin policy for audio content via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18352",
"url": "https://www.suse.com/security/cve/CVE-2018-18352"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18352",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18352",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18352"
},
{
"cve": "CVE-2018-18353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18353"
}
],
"notes": [
{
"category": "general",
"text": "Failure to dismiss http auth dialogs on navigation in Network Authentication in Google Chrome on Android prior to 71.0.3578.80 allowed a remote attacker to confuse the user about the origin of an auto dialog via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18353",
"url": "https://www.suse.com/security/cve/CVE-2018-18353"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18353",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18353",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18353"
},
{
"cve": "CVE-2018-18354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18354"
}
],
"notes": [
{
"category": "general",
"text": "Insufficient validate of external protocols in Shell Integration in Google Chrome on Windows prior to 71.0.3578.80 allowed a remote attacker to launch external programs via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18354",
"url": "https://www.suse.com/security/cve/CVE-2018-18354"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18354",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18354",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18354"
},
{
"cve": "CVE-2018-18355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18355"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18355",
"url": "https://www.suse.com/security/cve/CVE-2018-18355"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18355",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18355",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18355"
},
{
"cve": "CVE-2018-18356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18356"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18356",
"url": "https://www.suse.com/security/cve/CVE-2018-18356"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "external",
"summary": "SUSE Bug 1125396 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18356"
},
{
"cve": "CVE-2018-18357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18357"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18357",
"url": "https://www.suse.com/security/cve/CVE-2018-18357"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18357",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18357",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18357"
},
{
"cve": "CVE-2018-18358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18358"
}
],
"notes": [
{
"category": "general",
"text": "Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18358",
"url": "https://www.suse.com/security/cve/CVE-2018-18358"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18358",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18358",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18358"
},
{
"cve": "CVE-2018-18359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18359"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect handling of Reflect.construct in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18359",
"url": "https://www.suse.com/security/cve/CVE-2018-18359"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18359",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18359",
"url": "https://bugzilla.suse.com/1125330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12 SP2:chromedriver-71.0.3578.98-80.1.x86_64",
"SUSE Package Hub 12 SP2:chromium-71.0.3578.98-80.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-12-15T09:27:33Z",
"details": "moderate"
}
],
"title": "CVE-2018-18359"
}
]
}
OPENSUSE-SU-2019:0248-1
Vulnerability from csaf_opensuse - Published: 2019-03-23 11:06 - Updated: 2019-03-23 11:06Summary
Security update for MozillaFirefox
Severity
Important
Notes
Title of the patch: Security update for MozillaFirefox
Description of the patch: This update for MozillaFirefox to version 60.5.1esr fixes the following issues:
Security vulnerabilities addressed (MFSA-2019-05, boo#1125330):
- CVE-2018-18356: Fixed a use-after-free vulnerability in the Skia library that
could occur when creating a path, leading to a potentially exploitable crash.
- CVE-2019-5785: Fixed an integer overflow vulnerability in the Skia library
that could occur after specific transform operations, leading to a potentially
exploitable crash.
Patchnames: openSUSE-2019-248
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.8 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for MozillaFirefox",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for MozillaFirefox to version 60.5.1esr fixes the following issues:\n\nSecurity vulnerabilities addressed (MFSA-2019-05, boo#1125330):\n\n- CVE-2018-18356: Fixed a use-after-free vulnerability in the Skia library that\n could occur when creating a path, leading to a potentially exploitable crash.\n- CVE-2019-5785: Fixed an integer overflow vulnerability in the Skia library\n that could occur after specific transform operations, leading to a potentially\n exploitable crash.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-248",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_0248-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:0248-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XMFECNQD7OR7OS7QMHOXX2IJDRTXXZP5/#XMFECNQD7OR7OS7QMHOXX2IJDRTXXZP5"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:0248-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XMFECNQD7OR7OS7QMHOXX2IJDRTXXZP5/#XMFECNQD7OR7OS7QMHOXX2IJDRTXXZP5"
},
{
"category": "self",
"summary": "SUSE Bug 1125330",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18356 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18356/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5785 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5785/"
}
],
"title": "Security update for MozillaFirefox",
"tracking": {
"current_release_date": "2019-03-23T11:06:31Z",
"generator": {
"date": "2019-03-23T11:06:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:0248-1",
"initial_release_date": "2019-03-23T11:06:31Z",
"revision_history": [
{
"date": "2019-03-23T11:06:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-60.5.1-lp150.3.39.2.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64"
}
},
{
"category": "product_version",
"name": "MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64",
"product": {
"name": "MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64",
"product_id": "MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
},
"product_reference": "MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-18356",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18356"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18356",
"url": "https://www.suse.com/security/cve/CVE-2018-18356"
},
{
"category": "external",
"summary": "SUSE Bug 1118529 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1118529"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "external",
"summary": "SUSE Bug 1125396 for CVE-2018-18356",
"url": "https://bugzilla.suse.com/1125396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-23T11:06:31Z",
"details": "moderate"
}
],
"title": "CVE-2018-18356"
},
{
"cve": "CVE-2019-5785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-5785"
}
],
"notes": [
{
"category": "general",
"text": "Incorrect convexity calculations in Skia in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-5785",
"url": "https://www.suse.com/security/cve/CVE-2019-5785"
},
{
"category": "external",
"summary": "SUSE Bug 1125330 for CVE-2019-5785",
"url": "https://bugzilla.suse.com/1125330"
},
{
"category": "external",
"summary": "SUSE Bug 1125396 for CVE-2019-5785",
"url": "https://bugzilla.suse.com/1125396"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:MozillaFirefox-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-branding-upstream-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-buildsymbols-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-devel-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-common-60.5.1-lp150.3.39.2.x86_64",
"openSUSE Leap 15.0:MozillaFirefox-translations-other-60.5.1-lp150.3.39.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-23T11:06:31Z",
"details": "moderate"
}
],
"title": "CVE-2019-5785"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…