openSUSE alert openSUSE-SU-2018:1104-1 (Chromium) [LWN.net]


From:
    	       opensuse-security@opensuse.org 
To:
    	       opensuse-updates@opensuse.org 
Subject:
    	       openSUSE-SU-2018:1104-1: moderate: Security update for Chromium 
Date:
    	       Mon, 30 Apr 2018 03:06:57 +0200 (CEST)
Message-ID:
    	       <20180430010657.7080DFD38@maintenance.suse.de>
   openSUSE Security Update: Security update for Chromium
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2018:1104-1
Rating:             moderate
References:         #1091288 
Cross-References:   CVE-2018-6118
Affected Products:
                    openSUSE Leap 42.3
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:

   This update for Chromium to version 66.0.3359.139 addresses the following
   issues:

   - CVE-2018-6118: Use after free in Media Cache (boo#1091288)


Patch Instructions:

   To install this openSUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - openSUSE Leap 42.3:

      zypper in -t patch openSUSE-2018-406=1



Package List:

   - openSUSE Leap 42.3 (x86_64):

      chromedriver-66.0.3359.139-155.1
      chromedriver-debuginfo-66.0.3359.139-155.1
      chromium-66.0.3359.139-155.1
      chromium-debuginfo-66.0.3359.139-155.1
      chromium-debugsource-66.0.3359.139-155.1


References:

   https://www.suse.com/security/cve/CVE-2018-6118.html
   https://bugzilla.suse.com/1091288

From:		opensuse-security@opensuse.org
To:		opensuse-updates@opensuse.org
Subject:		openSUSE-SU-2018:1104-1: moderate: Security update for Chromium
Date:		Mon, 30 Apr 2018 03:06:57 +0200 (CEST)
Message-ID:		<20180430010657.7080DFD38@maintenance.suse.de>