FEDORA-EPEL-2018-3a3c72c5e5

security update in Fedora EPEL 7 for chromium

Status: stable 7 months ago

Update to Chromium 68. Security fix for CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 CVE-2018-6149

How to install

sudo dnf upgrade --advisory=FEDORA-EPEL-2018-3a3c72c5e5

Comments 8

This update has been submitted for testing by spot.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by kwizart.

Can this update be pushed to stable ? /me attempt to push to workaround a long standing issue with the rpmfusion counterpart.

karma: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1590682 CVE-2018-6149 chromium: chromium-browser: Out of bounds write in V8 [fedora-all]
#1590683 CVE-2018-6149 chromium: chromium-browser: Out of bounds write in V8 [epel-7]
#1608177 CVE-2018-6153 chromium-browser: Stack buffer overflow in Skia
#1608178 CVE-2018-6154 chromium-browser: Heap buffer overflow in WebGL
#1608179 CVE-2018-6155 chromium-browser: Use after free in WebRTC
#1608180 CVE-2018-6156 chromium-browser: Heap buffer overflow in WebRTC
#1608181 CVE-2018-6157 chromium-browser: Type confusion in WebRTC
#1608182 CVE-2018-6158 chromium-browser: Use after free in Blink
#1608183 CVE-2018-6159 chromium-browser: Same origin policy bypass in ServiceWorker
#1608184 CVE-2018-6160 chromium-browser: URL spoof in Chrome on iOS
#1608185 CVE-2018-6161 chromium-browser: Same origin policy bypass in WebAudio
#1608186 CVE-2018-6162 chromium-browser: Heap buffer overflow in WebGL
#1608187 CVE-2018-6163 chromium-browser: URL spoof in Omnibox
#1608188 CVE-2018-6164 chromium-browser: Same origin policy bypass in ServiceWorker
#1608189 CVE-2018-6165 chromium-browser: URL spoof in Omnibox
#1608190 CVE-2018-6166 chromium-browser: URL spoof in Omnibox
#1608191 CVE-2018-6167 chromium-browser: URL spoof in Omnibox
#1608192 CVE-2018-6168 chromium-browser: CORS bypass in Blink
#1608193 CVE-2018-6169 chromium-browser: Permissions bypass in extension installation
#1608194 CVE-2018-6170 chromium-browser: Type confusion in PDFium
#1608195 CVE-2018-6171 chromium-browser: Use after free in WebBluetooth
#1608196 CVE-2018-6172 chromium-browser: URL spoof in Omnibox
#1608197 CVE-2018-6173 chromium-browser: URL spoof in Omnibox
#1608198 CVE-2018-6174 chromium-browser: Integer overflow in SwiftShader
#1608199 CVE-2018-6175 chromium-browser: URL spoof in Omnibox
#1608200 CVE-2018-6176 chromium-browser: Local user privilege escalation in Extensions
#1608201 CVE-2018-6177 chromium-browser: Cross origin information leak in Blink
#1608202 CVE-2018-6178 chromium-browser: UI spoof in Extensions
#1608203 CVE-2018-6179 chromium-browser: Local file information leak in Extensions
#1608204 CVE-2018-6044 chromium-browser: Request privilege escalation in Extensions
#1608205 CVE-2018-4117 chromium-browser: Cross origin information leak in Blink
#1608206 CVE-2018-6150 chromium-browser: Cross origin information disclosure in Service Workers
#1608207 CVE-2018-6151 chromium-browser: Bad cast in DevTools
#1608208 CVE-2018-6152 chromium-browser: Local file write in DevTools
#1608210 CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 ... chromium: various flaws [fedora-all]
#1608211 CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 ... chromium: various flaws [epel-7]
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+2
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 9 months ago
in testing 9 months ago
in stable 7 months ago

Related Bugs 36

00 #1590682 CVE-2018-6149 chromium: chromium-browser: Out of bounds write in V8 [fedora-all]
00 #1590683 CVE-2018-6149 chromium: chromium-browser: Out of bounds write in V8 [epel-7]
00 #1608177 CVE-2018-6153 chromium-browser: Stack buffer overflow in Skia
00 #1608178 CVE-2018-6154 chromium-browser: Heap buffer overflow in WebGL
00 #1608179 CVE-2018-6155 chromium-browser: Use after free in WebRTC
00 #1608180 CVE-2018-6156 chromium-browser: Heap buffer overflow in WebRTC
00 #1608181 CVE-2018-6157 chromium-browser: Type confusion in WebRTC
00 #1608182 CVE-2018-6158 chromium-browser: Use after free in Blink
00 #1608183 CVE-2018-6159 chromium-browser: Same origin policy bypass in ServiceWorker
00 #1608184 CVE-2018-6160 chromium-browser: URL spoof in Chrome on iOS
00 #1608185 CVE-2018-6161 chromium-browser: Same origin policy bypass in WebAudio
00 #1608186 CVE-2018-6162 chromium-browser: Heap buffer overflow in WebGL
00 #1608187 CVE-2018-6163 chromium-browser: URL spoof in Omnibox
00 #1608188 CVE-2018-6164 chromium-browser: Same origin policy bypass in ServiceWorker
00 #1608189 CVE-2018-6165 chromium-browser: URL spoof in Omnibox
00 #1608190 CVE-2018-6166 chromium-browser: URL spoof in Omnibox
00 #1608191 CVE-2018-6167 chromium-browser: URL spoof in Omnibox
00 #1608192 CVE-2018-6168 chromium-browser: CORS bypass in Blink
00 #1608193 CVE-2018-6169 chromium-browser: Permissions bypass in extension installation
00 #1608194 CVE-2018-6170 chromium-browser: Type confusion in PDFium
00 #1608195 CVE-2018-6171 chromium-browser: Use after free in WebBluetooth
00 #1608196 CVE-2018-6172 chromium-browser: URL spoof in Omnibox
00 #1608197 CVE-2018-6173 chromium-browser: URL spoof in Omnibox
00 #1608198 CVE-2018-6174 chromium-browser: Integer overflow in SwiftShader
00 #1608199 CVE-2018-6175 chromium-browser: URL spoof in Omnibox
00 #1608200 CVE-2018-6176 chromium-browser: Local user privilege escalation in Extensions
00 #1608201 CVE-2018-6177 chromium-browser: Cross origin information leak in Blink
00 #1608202 CVE-2018-6178 chromium-browser: UI spoof in Extensions
00 #1608203 CVE-2018-6179 chromium-browser: Local file information leak in Extensions
00 #1608204 CVE-2018-6044 chromium-browser: Request privilege escalation in Extensions
00 #1608205 CVE-2018-4117 chromium-browser: Cross origin information leak in Blink
00 #1608206 CVE-2018-6150 chromium-browser: Cross origin information disclosure in Service Workers
00 #1608207 CVE-2018-6151 chromium-browser: Bad cast in DevTools
00 #1608208 CVE-2018-6152 chromium-browser: Local file write in DevTools
00 #1608210 CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 ... chromium: various flaws [fedora-all]
00 #1608211 CVE-2018-4117 CVE-2018-6044 CVE-2018-6150 CVE-2018-6151 CVE-2018-6152 CVE-2018-6153 CVE-2018-6154 CVE-2018-6155 CVE-2018-6156 CVE-2018-6157 CVE-2018-6158 CVE-2018-6159 CVE-2018-6161 CVE-2018-6162 CVE-2018-6163 ... chromium: various flaws [epel-7]

Automated Test Results