{ "Definition": [ { "ID": "oval:org.altlinux.errata:def:20181421", "Version": "oval:org.altlinux.errata:def:20181421", "Class": "patch", "Metadata": { "Title": "ALT-PU-2018-1421: package `chromium` update to version 65.0.3325.146-alt1", "AffectedList": [ { "Family": "unix", "Platforms": [ "ALT Linux branch c9f2" ], "Products": [ "ALT SPWorkstation", "ALT SPServer" ] } ], "References": [ { "RefID": "ALT-PU-2018-1421", "RefURL": "https://errata.altlinux.org/ALT-PU-2018-1421", "Source": "ALTPU" }, { "RefID": "BDU:2022-03972", "RefURL": "https://bdu.fstec.ru/vul/2022-03972", "Source": "BDU" }, { "RefID": "CVE-2018-6056", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6056", "Source": "CVE" }, { "RefID": "CVE-2018-6057", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6057", "Source": "CVE" }, { "RefID": "CVE-2018-6058", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6058", "Source": "CVE" }, { "RefID": "CVE-2018-6059", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6059", "Source": "CVE" }, { "RefID": "CVE-2018-6060", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6060", "Source": "CVE" }, { "RefID": "CVE-2018-6061", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6061", "Source": "CVE" }, { "RefID": "CVE-2018-6062", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6062", "Source": "CVE" }, { "RefID": "CVE-2018-6063", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6063", "Source": "CVE" }, { "RefID": "CVE-2018-6064", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6064", "Source": "CVE" }, { "RefID": "CVE-2018-6065", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6065", "Source": "CVE" }, { "RefID": "CVE-2018-6066", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6066", "Source": "CVE" }, { "RefID": "CVE-2018-6067", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6067", "Source": "CVE" }, { "RefID": "CVE-2018-6068", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6068", "Source": "CVE" }, { "RefID": "CVE-2018-6069", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6069", "Source": "CVE" }, { "RefID": "CVE-2018-6070", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6070", "Source": "CVE" }, { "RefID": "CVE-2018-6071", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6071", "Source": "CVE" }, { "RefID": "CVE-2018-6072", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6072", "Source": "CVE" }, { "RefID": "CVE-2018-6073", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6073", "Source": "CVE" }, { "RefID": "CVE-2018-6074", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6074", "Source": "CVE" }, { "RefID": "CVE-2018-6075", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6075", "Source": "CVE" }, { "RefID": "CVE-2018-6076", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6076", "Source": "CVE" }, { "RefID": "CVE-2018-6077", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6077", "Source": "CVE" }, { "RefID": "CVE-2018-6078", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6078", "Source": "CVE" }, { "RefID": "CVE-2018-6079", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6079", "Source": "CVE" }, { "RefID": "CVE-2018-6080", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6080", "Source": "CVE" }, { "RefID": "CVE-2018-6081", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6081", "Source": "CVE" }, { "RefID": "CVE-2018-6082", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6082", "Source": "CVE" }, { "RefID": "CVE-2018-6083", "RefURL": "https://nvd.nist.gov/vuln/detail/CVE-2018-6083", "Source": "CVE" } ], "Description": "This update upgrades chromium to version 65.0.3325.146-alt1. \nSecurity Fix(es):\n\n * BDU:2022-03972: Уязвимость обработчика JavaScript-сценариев V8 браузера Google Chrome, позволяющая нарушителю выполнить произвольный код\n\n * CVE-2018-6056: Type confusion could lead to a heap out-of-bounds write in V8 in Google Chrome prior to 64.0.3282.168 allowing a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.\n\n * CVE-2018-6057: Lack of special casing of Android ashmem in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to bypass inter-process read only guarantees via a crafted HTML page.\n\n * CVE-2018-6058: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11215. Reason: This candidate is a reservation duplicate of CVE-2017-11215. Notes: All CVE users should reference CVE-2017-11215 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage\n\n * CVE-2018-6059: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11225. Reason: This candidate is a reservation duplicate of CVE-2017-11225. Notes: All CVE users should reference CVE-2017-11225 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage\n\n * CVE-2018-6060: Use after free in WebAudio in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2018-6061: A race in the handling of SharedArrayBuffers in WebAssembly in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2018-6062: Heap overflow write in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.\n\n * CVE-2018-6063: Incorrect use of mojo::WrapSharedMemoryHandle in Mojo in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page.\n\n * CVE-2018-6064: Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2018-6065: Integer overflow in computing the required allocation size when instantiating a new javascript object in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2018-6066: Lack of CORS checking by ResourceFetcher/ResourceLoader in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page.\n\n * CVE-2018-6067: Incorrect IPC serialization in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.\n\n * CVE-2018-6068: Object lifecycle issue in Chrome Custom Tab in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.\n\n * CVE-2018-6069: Stack buffer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.\n\n * CVE-2018-6070: Lack of CSP enforcement on WebUI pages in Bink in Google Chrome prior to 65.0.3325.146 allowed an attacker who convinced a user to install a malicious extension to bypass content security policy via a crafted Chrome Extension.\n\n * CVE-2018-6071: An integer overflow in Skia in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.\n\n * CVE-2018-6072: An integer overflow leading to use after free in PDFium in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.\n\n * CVE-2018-6073: A heap buffer overflow in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.\n\n * CVE-2018-6074: Failure to apply Mark-of-the-Web in Downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to bypass OS level controls via a crafted HTML page.\n\n * CVE-2018-6075: Incorrect handling of specified filenames in file downloads in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page and user interaction.\n\n * CVE-2018-6076: Insufficient encoding of URL fragment identifiers in Blink in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to perform a DOM based XSS attack via a crafted HTML page.\n\n * CVE-2018-6077: Displacement map filters being applied to cross-origin images in Blink SVG rendering in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page.\n\n * CVE-2018-6078: Incorrect handling of confusable characters in Omnibox in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.\n\n * CVE-2018-6079: Inappropriate sharing of TEXTURE_2D_ARRAY/TEXTURE_3D data between tabs in WebGL in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to leak cross-origin data via a crafted HTML page.\n\n * CVE-2018-6080: Lack of access control checks in Instrumentation in Google Chrome prior to 65.0.3325.146 allowed a remote attacker who had compromised the renderer process to obtain memory metadata from privileged processes .\n\n * CVE-2018-6081: XSS vulnerabilities in Interstitials in Google Chrome prior to 65.0.3325.146 allowed an attacker who convinced a user to install a malicious extension or open Developer Console to inject arbitrary scripts or HTML via a crafted HTML page.\n\n * CVE-2018-6082: Including port 22 in the list of allowed FTP ports in Networking in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially enumerate internal host services via a crafted HTML page.\n\n * CVE-2018-6083: Failure to disallow PWA installation from CSP sandboxed pages in AppManifest in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to access privileged APIs via a crafted HTML page.", "Advisory": { "From": "errata.altlinux.org", "Severity": "High", "Rights": "Copyright 2024 BaseALT Ltd.", "Issued": { "Date": "2018-03-15" }, "Updated": { "Date": "2018-03-15" }, "BDUs": [ { "ID": "BDU:2022-03972", "CVSS": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "CVSS3": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-190, CWE-787", "Href": "https://bdu.fstec.ru/vul/2022-03972", "Impact": "High", "Public": "20181114" } ], "CVEs": [ { "ID": "CVE-2018-6056", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-704", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6056", "Impact": "High", "Public": "20190109" }, { "ID": "CVE-2018-6057", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-732", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6057", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6058", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6058", "Impact": "None", "Public": "20211102" }, { "ID": "CVE-2018-6059", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6059", "Impact": "None", "Public": "20211102" }, { "ID": "CVE-2018-6060", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-416", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6060", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6061", "CVSS": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-362", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6061", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6062", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-787", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6062", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6063", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-787", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6063", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6064", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-704", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6064", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6065", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-190", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6065", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6066", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-200", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6066", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6067", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-125", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6067", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6068", "CVSS": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "CWE": "CWE-20", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6068", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6069", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-125", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6069", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6070", "CVSS": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "CWE": "CWE-79", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6070", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6071", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-125", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6071", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6072", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-787", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6072", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6073", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-787", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6073", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6074", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "CWE-20", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6074", "Impact": "High", "Public": "20181114" }, { "ID": "CVE-2018-6075", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-200", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6075", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6076", "CVSS": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "CWE": "CWE-79", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6076", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6077", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-200", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6077", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6078", "CVSS": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "CWE": "CWE-20", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6078", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6079", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-200", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6079", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6080", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "CWE": "CWE-269", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6080", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6081", "CVSS": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "CWE": "CWE-79", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6081", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6082", "CVSS": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N", "CWE": "CWE-200", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6082", "Impact": "Low", "Public": "20181114" }, { "ID": "CVE-2018-6083", "CVSS": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "CVSS3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "CWE": "NVD-CWE-noinfo", "Href": "https://nvd.nist.gov/vuln/detail/CVE-2018-6083", "Impact": "High", "Public": "20181114" } ], "AffectedCPEs": { "CPEs": [ "cpe:/o:alt:spworkstation:8.4", "cpe:/o:alt:spserver:8.4" ] } } }, "Criteria": { "Operator": "AND", "Criterions": [ { "TestRef": "oval:org.altlinux.errata:tst:3001", "Comment": "ALT Linux must be installed" } ], "Criterias": [ { "Operator": "OR", "Criterions": [ { "TestRef": "oval:org.altlinux.errata:tst:20181421001", "Comment": "chromium is earlier than 0:65.0.3325.146-alt1" }, { "TestRef": "oval:org.altlinux.errata:tst:20181421002", "Comment": "chromium-gnome is earlier than 0:65.0.3325.146-alt1" }, { "TestRef": "oval:org.altlinux.errata:tst:20181421003", "Comment": "chromium-kde is earlier than 0:65.0.3325.146-alt1" } ] } ] } } ] }