Bug 1115537 - (CVE-2018-17478) VUL-0: CVE-2018-17478: chromium: Out of bounds memory access in V8
(CVE-2018-17478)
VUL-0: CVE-2018-17478: chromium: Out of bounds memory access in V8
Status: RESOLVED FIXED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.0
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/219018/
CVSSv3:RedHat:CVE-2018-17478:6.5:(AV...
:
Depends on: 1109141
Blocks:
  Show dependency treegraph
 
Reported: 2018-11-10 19:17 UTC by Andreas Stieger
Modified: 2018-11-20 23:13 UTC (History)
0 users

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Tomáš Chvátal 2018-11-12 07:47:58 UTC
The chrome mirroring system is dead, I will create the update whenever I can actually download the tarball.
Comment 2 Tomáš Chvátal 2018-11-14 10:22:13 UTC
Submissions done.
Comment 3 Swamp Workflow Management 2018-11-14 11:40:06 UTC
This is an autogenerated message for OBS integration:
This bug (1115537) was mentioned in
https://build.opensuse.org/request/show/648895 Factory / chromium
https://build.opensuse.org/request/show/648900 15.0 / chromium
https://build.opensuse.org/request/show/648901 Backports:SLE-15 / chromium
https://build.opensuse.org/request/show/648903 42.3 / chromium
Comment 4 Swamp Workflow Management 2018-11-16 14:02:10 UTC
This is an autogenerated message for OBS integration:
This bug (1115537) was mentioned in
https://build.opensuse.org/request/show/649578 Backports:SLE-12-SP2 / chromium
Comment 5 Swamp Workflow Management 2018-11-18 23:08:40 UTC
openSUSE-SU-2018:3805-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1115537
CVE References: CVE-2018-17478
Sources used:
openSUSE Leap 15.0 (src):    chromium-70.0.3538.102-lp150.2.23.2
openSUSE Backports SLE-15 (src):    chromium-70.0.3538.102-bp150.2.17.1
Comment 6 Andreas Stieger 2018-11-20 18:12:02 UTC
closing
Comment 7 Swamp Workflow Management 2018-11-20 23:12:10 UTC
openSUSE-SU-2018:3835-1: An update that fixes 18 vulnerabilities is now available.

Category: security (important)
Bug References: 1112111,1115537
CVE References: CVE-2018-17462,CVE-2018-17463,CVE-2018-17464,CVE-2018-17465,CVE-2018-17466,CVE-2018-17467,CVE-2018-17468,CVE-2018-17469,CVE-2018-17470,CVE-2018-17471,CVE-2018-17472,CVE-2018-17473,CVE-2018-17474,CVE-2018-17475,CVE-2018-17476,CVE-2018-17477,CVE-2018-17478,CVE-2018-5179
Sources used:
SUSE Package Hub for SUSE Linux Enterprise 12 (src):    chromium-70.0.3538.102-74.1
Comment 8 Swamp Workflow Management 2018-11-20 23:13:01 UTC
openSUSE-SU-2018:3837-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1115537
CVE References: CVE-2018-17478
Sources used:
openSUSE Leap 42.3 (src):    chromium-70.0.3538.102-182.1