Bug 1149143 - (CVE-2019-5869) VUL-0: CVE-2019-5869: chromium: Use-after-free in Blink
(CVE-2019-5869)
VUL-0: CVE-2019-5869: chromium: Use-after-free in Blink
Status: RESOLVED FIXED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.1
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
Security Team bot
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2019-09-03 07:17 UTC by Andreas Stieger
Modified: 2019-11-07 07:45 UTC (History)
0 users

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2019-09-03 07:17:07 UTC
https://chromereleases.googleblog.com/2019/08/stable-channel-update-for-desktop_26.html

Fixed in chromium 76.0.3809.132:

* CVE-2019-5869: Use-after-free in Blink
* Various fixes from internal audits, fuzzing and other initiatives
Comment 1 Tomáš Chvátal 2019-09-03 13:17:32 UTC
Submissions were done.
Comment 2 Swamp Workflow Management 2019-09-03 14:20:11 UTC
This is an autogenerated message for OBS integration:
This bug (1149143) was mentioned in
https://build.opensuse.org/request/show/728005 Factory / chromium
https://build.opensuse.org/request/show/728006 15.0 / chromium
https://build.opensuse.org/request/show/728007 15.1 / chromium
https://build.opensuse.org/request/show/728008 Backports:SLE-15 / chromium
Comment 3 Swamp Workflow Management 2019-09-03 17:30:10 UTC
This is an autogenerated message for OBS integration:
This bug (1149143) was mentioned in
https://build.opensuse.org/request/show/728055 15.1 / chromium
https://build.opensuse.org/request/show/728056 15.0 / chromium
https://build.opensuse.org/request/show/728057 Factory / chromium
https://build.opensuse.org/request/show/728058 Backports:SLE-15 / chromium
Comment 4 Swamp Workflow Management 2019-09-07 10:11:17 UTC
openSUSE-SU-2019:2080-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1146219,1149143
CVE References: CVE-2019-5869
Sources used:
openSUSE Leap 15.1 (src):    chromium-76.0.3809.132-lp151.2.25.1
Comment 5 Swamp Workflow Management 2019-09-07 13:10:58 UTC
openSUSE-SU-2019:2081-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1146219,1149143
CVE References: CVE-2019-5869
Sources used:
openSUSE Leap 15.0 (src):    chromium-76.0.3809.132-lp150.234.1
Comment 6 Swamp Workflow Management 2019-09-08 19:11:03 UTC
openSUSE-SU-2019:2094-1: An update that solves one vulnerability and has one errata is now available.

Category: security (moderate)
Bug References: 1146219,1149143
CVE References: CVE-2019-5869
Sources used:
openSUSE Backports SLE-15-SP1 (src):    chromium-76.0.3809.132-bp151.3.9.1
Comment 7 Andreas Stieger 2019-09-12 01:00:43 UTC
done
Comment 8 Swamp Workflow Management 2019-11-04 13:40:22 UTC
This is an autogenerated message for OBS integration:
This bug (1149143) was mentioned in
https://build.opensuse.org/request/show/745163 Backports:SLE-12-SP3 / chromium
Comment 9 Swamp Workflow Management 2019-11-06 23:12:16 UTC
openSUSE-SU-2019:2447-1: An update that fixes 86 vulnerabilities is now available.

Category: security (important)
Bug References: 1143492,1144625,1145242,1146219,1149143,1150425,1151229,1153660,1154806,1155643
CVE References: CVE-2019-13659,CVE-2019-13660,CVE-2019-13661,CVE-2019-13662,CVE-2019-13663,CVE-2019-13664,CVE-2019-13665,CVE-2019-13666,CVE-2019-13667,CVE-2019-13668,CVE-2019-13669,CVE-2019-13670,CVE-2019-13671,CVE-2019-13673,CVE-2019-13674,CVE-2019-13675,CVE-2019-13676,CVE-2019-13677,CVE-2019-13678,CVE-2019-13679,CVE-2019-13680,CVE-2019-13681,CVE-2019-13682,CVE-2019-13683,CVE-2019-13685,CVE-2019-13686,CVE-2019-13687,CVE-2019-13688,CVE-2019-13693,CVE-2019-13694,CVE-2019-13695,CVE-2019-13696,CVE-2019-13697,CVE-2019-13699,CVE-2019-13700,CVE-2019-13701,CVE-2019-13702,CVE-2019-13703,CVE-2019-13704,CVE-2019-13705,CVE-2019-13706,CVE-2019-13707,CVE-2019-13708,CVE-2019-13709,CVE-2019-13710,CVE-2019-13711,CVE-2019-13713,CVE-2019-13714,CVE-2019-13715,CVE-2019-13716,CVE-2019-13717,CVE-2019-13718,CVE-2019-13719,CVE-2019-13720,CVE-2019-13721,CVE-2019-15903,CVE-2019-5850,CVE-2019-5851,CVE-2019-5852,CVE-2019-5853,CVE-2019-5854,CVE-2019-5855,CVE-2019-5856,CVE-2019-5857,CVE-2019-5858,CVE-2019-5859,CVE-2019-5860,CVE-2019-5861,CVE-2019-5862,CVE-2019-5863,CVE-2019-5864,CVE-2019-5865,CVE-2019-5867,CVE-2019-5868,CVE-2019-5869,CVE-2019-5870,CVE-2019-5871,CVE-2019-5872,CVE-2019-5874,CVE-2019-5875,CVE-2019-5876,CVE-2019-5877,CVE-2019-5878,CVE-2019-5879,CVE-2019-5880,CVE-2019-5881
Sources used:
SUSE Package Hub for SUSE Linux Enterprise 12 (src):    chromium-78.0.3904.87-10.1