Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 202003-08 ] Chromium, Google Chrome
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2308

PostPosted: Fri Mar 13, 2020 5:26 am    Post subject: [ GLSA 202003-08 ] Chromium, Google Chrome Reply with quote

Gentoo Linux Security Advisory

Title: Chromium, Google Chrome: Multiple vulnerabilities (GLSA 202003-08)
Severity: high
Exploitable: local, remote
Date: 2020-03-13
Bug(s): #699676, #700588, #702498, #703286, #704960, #705638, #708322, #710760, #711570
ID: 202003-08

Synopsis

Multiple vulnerabilities have been found in Chromium and Google
Chrome, the worst of which could allow remote attackers to execute
arbitrary code.


Background

Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all users to experience the web.
Google Chrome is one fast, simple, and secure browser for all your
devices.


Affected Packages

Package: www-client/chromium
Vulnerable: < 80.0.3987.132
Unaffected: >= 80.0.3987.132
Architectures: All supported architectures

Package: www-client/google-chrome
Vulnerable: < 80.0.3987.132
Unaffected: >= 80.0.3987.132
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in Chromium and Google
Chrome. Please review the referenced CVE identifiers and Google Chrome
Releases for details.


Impact

A remote attacker could execute arbitrary code, escalate privileges,
obtain sensitive information, spoof an URL or cause a Denial of Service
condition.


Workaround

There is no known workaround at this time.

Resolution

All Chromium users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-client/chromium-80.0.3987.132"
   
All Google Chrome users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-client/google-chrome-80.0.3987.132"
   


References

CVE-2019-13723
CVE-2019-13724
CVE-2019-13725
CVE-2019-13726
CVE-2019-13727
CVE-2019-13728
CVE-2019-13729
CVE-2019-13730
CVE-2019-13732
CVE-2019-13734
CVE-2019-13735
CVE-2019-13736
CVE-2019-13737
CVE-2019-13738
CVE-2019-13739
CVE-2019-13740
CVE-2019-13741
CVE-2019-13742
CVE-2019-13743
CVE-2019-13744
CVE-2019-13745
CVE-2019-13746
CVE-2019-13747
CVE-2019-13748
CVE-2019-13749
CVE-2019-13750
CVE-2019-13751
CVE-2019-13752
CVE-2019-13753
CVE-2019-13754
CVE-2019-13755
CVE-2019-13756
CVE-2019-13757
CVE-2019-13758
CVE-2019-13759
CVE-2019-13761
CVE-2019-13762
CVE-2019-13763
CVE-2019-13764
CVE-2019-13767
CVE-2020-6377
CVE-2020-6378
CVE-2020-6379
CVE-2020-6380
CVE-2020-6381
CVE-2020-6382
CVE-2020-6385
CVE-2020-6387
CVE-2020-6388
CVE-2020-6389
CVE-2020-6390
CVE-2020-6391
CVE-2020-6392
CVE-2020-6393
CVE-2020-6394
CVE-2020-6395
CVE-2020-6396
CVE-2020-6397
CVE-2020-6398
CVE-2020-6399
CVE-2020-6400
CVE-2020-6401
CVE-2020-6402
CVE-2020-6403
CVE-2020-6404
CVE-2020-6406
CVE-2020-6407
CVE-2020-6408
CVE-2020-6409
CVE-2020-6410
CVE-2020-6411
CVE-2020-6412
CVE-2020-6413
CVE-2020-6414
CVE-2020-6415
CVE-2020-6416
CVE-2020-6418
CVE-2020-6420
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum