Security update for chromium SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1849-1 Final 1 1 2019-08-12T16:24:35Z current 2019-08-12T16:24:35Z 2019-08-12T16:24:35Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for chromium This update for chromium to version 76.0.3809.87 fixes the following issues: - CVE-2019-5850: Use-after-free in offline page fetcher (boo#1143492) - CVE-2019-5860: Use-after-free in PDFium (boo#1143492) - CVE-2019-5853: Memory corruption in regexp length check (boo#1143492) - CVE-2019-5851: Use-after-poison in offline audio context (boo#1143492) - CVE-2019-5859: res: URIs can load alternative browsers (boo#1143492) - CVE-2019-5856: Insufficient checks on filesystem: URI permissions (boo#1143492) - CVE-2019-5855: Integer overflow in PDFium (boo#1143492) - CVE-2019-5865: Site isolation bypass from compromised renderer (boo#1143492) - CVE-2019-5858: Insufficient filtering of Open URL service parameters (boo#1143492) - CVE-2019-5864: Insufficient port filtering in CORS for extensions (boo#1143492) - CVE-2019-5862: AppCache not robust to compromised renderers (boo#1143492) - CVE-2019-5861: Click location incorrectly checked (boo#1143492) - CVE-2019-5857: Comparison of -0 and null yields crash (boo#1143492) - CVE-2019-5854: Integer overflow in PDFium text rendering (boo#1143492) - CVE-2019-5852: Object leak of utility functions (boo#1143492) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1849 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK E-Mail link for openSUSE-SU-2019:1849-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1143492 SUSE Bug 1143492 https://bugzilla.suse.com/1144625 SUSE Bug 1144625 https://www.suse.com/security/cve/CVE-2019-5850/ SUSE CVE CVE-2019-5850 page https://www.suse.com/security/cve/CVE-2019-5851/ SUSE CVE CVE-2019-5851 page https://www.suse.com/security/cve/CVE-2019-5852/ SUSE CVE CVE-2019-5852 page https://www.suse.com/security/cve/CVE-2019-5853/ SUSE CVE CVE-2019-5853 page https://www.suse.com/security/cve/CVE-2019-5854/ SUSE CVE CVE-2019-5854 page https://www.suse.com/security/cve/CVE-2019-5855/ SUSE CVE CVE-2019-5855 page https://www.suse.com/security/cve/CVE-2019-5856/ SUSE CVE CVE-2019-5856 page https://www.suse.com/security/cve/CVE-2019-5857/ SUSE CVE CVE-2019-5857 page https://www.suse.com/security/cve/CVE-2019-5858/ SUSE CVE CVE-2019-5858 page https://www.suse.com/security/cve/CVE-2019-5859/ SUSE CVE CVE-2019-5859 page https://www.suse.com/security/cve/CVE-2019-5860/ SUSE CVE CVE-2019-5860 page https://www.suse.com/security/cve/CVE-2019-5861/ SUSE CVE CVE-2019-5861 page https://www.suse.com/security/cve/CVE-2019-5862/ SUSE CVE CVE-2019-5862 page https://www.suse.com/security/cve/CVE-2019-5863/ SUSE CVE CVE-2019-5863 page https://www.suse.com/security/cve/CVE-2019-5864/ SUSE CVE CVE-2019-5864 page https://www.suse.com/security/cve/CVE-2019-5865/ SUSE CVE CVE-2019-5865 page openSUSE Leap 15.1 chromedriver-76.0.3809.87-lp151.2.15.1 chromium-76.0.3809.87-lp151.2.15.1 chromedriver-76.0.3809.87-lp151.2.15.1 as a component of openSUSE Leap 15.1 chromium-76.0.3809.87-lp151.2.15.1 as a component of openSUSE Leap 15.1 Use after free in offline mode in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. CVE-2019-5850 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 critical 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5850.html CVE-2019-5850 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Use after free in WebAudio in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2019-5851 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5851.html CVE-2019-5851 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. CVE-2019-5852 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5852.html CVE-2019-5852 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2019-5853 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5853.html CVE-2019-5853 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CVE-2019-5854 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5854.html CVE-2019-5854 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Integer overflow in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CVE-2019-5855 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5855.html CVE-2019-5855 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient policy enforcement in storage in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. CVE-2019-5856 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5856.html CVE-2019-5856 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Inappropriate implementation in JavaScript in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. CVE-2019-5857 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5857.html CVE-2019-5857 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Incorrect security UI in MacOS services integration in Google Chrome on OS X prior to 76.0.3809.87 allowed a local attacker to execute arbitrary code via a crafted HTML page. CVE-2019-5858 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5858.html CVE-2019-5858 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient filtering in URI schemes in Google Chrome on Windows prior to 76.0.3809.87 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. CVE-2019-5859 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5859.html CVE-2019-5859 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Use after free in PDFium in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CVE-2019-5860 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5860.html CVE-2019-5860 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient data validation in Blink in Google Chrome prior to 76.0.3809.87 allowed a remote attacker to bypass anti-clickjacking policy via a crafted HTML page. CVE-2019-5861 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5861.html CVE-2019-5861 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient data validation in AppCache in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. CVE-2019-5862 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5862.html CVE-2019-5862 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. CVE-2019-5863 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5863.html CVE-2019-5863 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient data validation in CORS in Google Chrome prior to 76.0.3809.87 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension. CVE-2019-5864 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5864.html CVE-2019-5864 https://bugzilla.suse.com/1143492 SUSE Bug 1143492 Insufficient policy enforcement in navigations in Google Chrome prior to 76.0.3809.87 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. CVE-2019-5865 openSUSE Leap 15.1:chromedriver-76.0.3809.87-lp151.2.15.1 openSUSE Leap 15.1:chromium-76.0.3809.87-lp151.2.15.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WQECSHEVYXDAI56ELOTP64T44DSAKEKK/#WQECSHEVYXDAI56ELOTP64T44DSAKEKK https://www.suse.com/security/cve/CVE-2019-5865.html CVE-2019-5865 https://bugzilla.suse.com/1143492 SUSE Bug 1143492