chromium is vulnerable to arbitrary code execution. The vulnerability exists through heap buffer overflow where a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CPE | Name | Operator | Version |
---|---|---|---|
chromium:stretch | eq | 70.0.3538.110-1~deb9u1 | |
chromium:stretch | eq | 70.0.3538.110-1~deb9u1 |
lists.opensuse.org/opensuse-security-announce/2019-04/msg00043.html
www.securityfocus.com/bid/106084
access.redhat.com/errata/RHSA-2018:3803
chromereleases.googleblog.com/2018/12/stable-channel-update-for-desktop.html
crbug.com/895362
security-tracker.debian.org/tracker/CVE-2018-18335
security.gentoo.org/glsa/201904-07
security.gentoo.org/glsa/201908-18
www.debian.org/security/2018/dsa-4352