AVG-231

Package chromium
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 57.0.2987.110-1
Fixed 57.0.2987.133-1
Current 67.0.3396.87-2 [extra]
Ticket None
Created Fri Mar 31 07:22:58 2017
Issue Severity Remote Type Description
CVE-2017-5056 High Yes Arbitrary code execution
A use-after-free vulnerability has been found in the Blink component of the Chromium browser.
CVE-2017-5055 Critical Yes Arbitrary code execution
A use-after-free vulnerability has been found in the printing component of the Chromium browser.
CVE-2017-5054 High Yes Arbitrary code execution
A heap buffer overflow vulnerability has been found in the V8 component of the Chromium browser.
CVE-2017-5053 High Yes Arbitrary code execution
An out of bounds memory access vulnerability has been found in the V8 component of the Chromium browser.
CVE-2017-5052 High Yes Arbitrary code execution
An invalid cast vulnerability has been found in the Blink component of the Chromium browser.
Date Advisory Package Description
31 Mar 2017 ASA-201703-19 chromium arbitrary code execution
References
https://chromereleases.googleblog.com/2017/03/stable-channel-update-for-desktop_29.html