Executive Summary

Summary
Titlechromium security update
Informations
NameDSA-4575First vendor Publication2019-11-24
VendorDebianLast vendor Modification2019-11-24
Severity (Vendor) N/ARevision1

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base ScoreN/AAttack RangeN/A
Cvss Impact ScoreN/AAttack ComplexityN/A
Cvss Expoit ScoreN/AAuthenticationN/A
Calculate full CVSS 2.0 Vectors scores

Detail

Several vulnerabilities have been discovered in the chromium web browser.

CVE-2019-13723

Yuxiang Li discovered a use-after-free issue in the bluetooth service.

CVE-2019-13724

Yuxiang Li discovered an out-of-bounds read issue in the bluetooth service.

For the oldstable distribution (stretch), security support for the chromium package has been discontinued.

For the stable distribution (buster), these problems have been fixed in version 78.0.3904.108-1~deb10u1.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to its security tracker page at: https://security-tracker.debian.org/tracker/chromium

Original Source

Url : http://www.debian.org/security/2019/dsa-4575

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2019-11-25 05:18:50
  • First insertion