Security update for chromium SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1558-1 Final 1 1 2019-06-15T16:35:31Z current 2019-06-15T16:35:31Z 2019-06-15T16:35:31Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for chromium This update for chromium to version 75.0.3770.80 fixes the following issues: Security issues fixed: - CVE-2019-5828: Fixed a Use after free in ServiceWorker - CVE-2019-5829: Fixed Use after free in Download Manager - CVE-2019-5830: Fixed an incorrectly credentialed requests in CORS - CVE-2019-5831: Fixed an incorrect map processing in V8 - CVE-2019-5832: Fixed an incorrect CORS handling in XHR - CVE-2019-5833: Fixed an inconsistent security UI placemen - CVE-2019-5835: Fixed an out of bounds read in Swiftshader - CVE-2019-5836: Fixed a heap buffer overflow in Angle - CVE-2019-5837: Fixed a cross-origin resources size disclosure in Appcache - CVE-2019-5838: Fixed an overly permissive tab access in Extensions - CVE-2019-5839: Fixed an incorrect handling of certain code points in Blink - CVE-2019-5840: Fixed a popup blocker bypass The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1558 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html E-Mail link for openSUSE-SU-2019:1558-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1137332 SUSE Bug 1137332 https://www.suse.com/security/cve/CVE-2019-5828/ SUSE CVE CVE-2019-5828 page https://www.suse.com/security/cve/CVE-2019-5829/ SUSE CVE CVE-2019-5829 page https://www.suse.com/security/cve/CVE-2019-5830/ SUSE CVE CVE-2019-5830 page https://www.suse.com/security/cve/CVE-2019-5831/ SUSE CVE CVE-2019-5831 page https://www.suse.com/security/cve/CVE-2019-5832/ SUSE CVE CVE-2019-5832 page https://www.suse.com/security/cve/CVE-2019-5833/ SUSE CVE CVE-2019-5833 page https://www.suse.com/security/cve/CVE-2019-5834/ SUSE CVE CVE-2019-5834 page https://www.suse.com/security/cve/CVE-2019-5835/ SUSE CVE CVE-2019-5835 page https://www.suse.com/security/cve/CVE-2019-5836/ SUSE CVE CVE-2019-5836 page https://www.suse.com/security/cve/CVE-2019-5837/ SUSE CVE CVE-2019-5837 page https://www.suse.com/security/cve/CVE-2019-5838/ SUSE CVE CVE-2019-5838 page https://www.suse.com/security/cve/CVE-2019-5839/ SUSE CVE CVE-2019-5839 page https://www.suse.com/security/cve/CVE-2019-5840/ SUSE CVE CVE-2019-5840 page openSUSE Leap 15.0 chromedriver-75.0.3770.80-lp150.215.1 chromium-75.0.3770.80-lp150.215.1 chromedriver-75.0.3770.80-lp150.215.1 as a component of openSUSE Leap 15.0 chromium-75.0.3770.80-lp150.215.1 as a component of openSUSE Leap 15.0 Object lifecycle issue in ServiceWorker in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. CVE-2019-5828 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5828.html CVE-2019-5828 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Integer overflow in download manager in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. CVE-2019-5829 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5829.html CVE-2019-5829 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Insufficient policy enforcement in CORS in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2019-5830 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5830.html CVE-2019-5830 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Object lifecycle issue in V8 in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2019-5831 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5831.html CVE-2019-5831 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Insufficient policy enforcement in XMLHttpRequest in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2019-5832 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5832.html CVE-2019-5832 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Incorrect dialog box scoping in browser in Google Chrome on Android prior to 75.0.3770.80 allowed a remote attacker to display misleading security UI via a crafted HTML page. CVE-2019-5833 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5833.html CVE-2019-5833 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Insufficient data validation in Blink in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to perform domain spoofing via a crafted HTML page. CVE-2019-5834 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5834.html CVE-2019-5834 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Object lifecycle issue in SwiftShader in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. CVE-2019-5835 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5835.html CVE-2019-5835 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Heap buffer overflow in ANGLE in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2019-5836 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5836.html CVE-2019-5836 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Resource size information leakage in Blink in Google Chrome prior to 75.0.3770.80 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2019-5837 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5837.html CVE-2019-5837 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Insufficient policy enforcement in extensions API in Google Chrome prior to 75.0.3770.80 allowed an attacker who convinced a user to install a malicious extension to bypass restrictions on file URIs via a crafted Chrome Extension. CVE-2019-5838 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5838.html CVE-2019-5838 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL. CVE-2019-5839 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5839.html CVE-2019-5839 https://bugzilla.suse.com/1137332 SUSE Bug 1137332 Incorrect security UI in popup blocker in Google Chrome on iOS prior to 75.0.3770.80 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. CVE-2019-5840 openSUSE Leap 15.0:chromedriver-75.0.3770.80-lp150.215.1 openSUSE Leap 15.0:chromium-75.0.3770.80-lp150.215.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2019-06/msg00034.html https://www.suse.com/security/cve/CVE-2019-5840.html CVE-2019-5840 https://bugzilla.suse.com/1137332 SUSE Bug 1137332