Update to chromium 58. Move chrome-remote-desktop to user systemd service. Security fixes for CVE-2017-5068, CVE-2017-5057, CVE-2017-5058, CVE-2017-5059, CVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5063, CVE-2017-5064, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067, CVE-2017-5069

----

Security fix for CVE-2017-5055, CVE-2017-5054, CVE-2017-5052, CVE-2017-5056, CVE-2017-5053

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Security fix for CVE-2017-5055, CVE-2017-5054, CVE-2017-5052, CVE-2017-5056, CVE-2017-5053

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Google Chrome Releases reports :

5 security fixes in this release, including :

- [698622] Critical CVE-2017-5055: Use after free in printing. Credit to Wadih Matar

- [699166] High CVE-2017-5054: Heap buffer overflow in V8. Credit to Nicolas Trippar of Zimperium zLabs

- [662767] High CVE-2017-5052: Bad cast in Blink. Credit to JeongHoon Shin

- [705445] High CVE-2017-5056: Use after free in Blink. Credit to anonymous

- [702058] High CVE-2017-5053: Out of bounds memory access in V8.
Credit to Team Sniper (Keen Lab and PC Mgr) reported through ZDI (ZDI-CAN-4587)

The remote host is affected by the vulnerability described in GLSA-201704-02 (Chromium: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in the Chromium web       browser. Please review the CVE identifiers referenced below for details.
  Impact :

    A remote attacker could possibly execute arbitrary code with the       privileges of the process, cause a Denial of Service condition, obtain       sensitive information, or bypass security restrictions.
  Workaround :

    There is no known workaround at this time.

The version of Google Chrome installed on the remote macOS or Mac OS X host is prior to 57.0.2987.133. It is, therefore, affected by the following vulnerabilities :

  - A type cast error exists in Blink in the     LayoutInline::absoluteVisualRect() function within file     layout/LayoutInline.cpp that allows an unauthenticated,     remote attacker to cause an unspecified impact.
    (CVE-2017-5052)

  - An out-of-bounds read error exists in V8 in the     IndexOfValueImpl() function template within file     builtins/builtins-array.cc when handling arrays. An     unauthenticated, remote attacker can exploit this to     disclose memory content. (CVE-2017-5053)

  - A heap buffer overflow condition exists in V8 that     allows an unauthenticated, remote attacker to execute     arbitrary code. (CVE-2017-5054)

  - A use-after-free error exists in the PrintViewManager     class within file printing/print_view_manager.cc when     handling previews. An unauthenticated, remote attacker     can exploit this to deference already freed memory,     resulting in the execution arbitrary code.
    (CVE-2017-5055)

  - A use-after-free error exists in the Blink that allows     an unauthenticated, remote attacker to dereference     already freed memory, resulting in the execution of     arbitrary code. (CVE-2017-5056)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

This update to Chromium 57.0.2987.133 fixes the following issues (boo#1031677) :

  - CVE-2017-5055: Use after free in printing

  - CVE-2017-5054: Heap buffer overflow in V8

  - CVE-2017-5052: Bad cast in Blink

  - CVE-2017-5056: Use after free in Blink

  - CVE-2017-5053: Out of bounds memory access in V8

The following packaging changes are included :

  - No longer claim to provide browser(npapi)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:0860 advisory.

    Chromium is an open-source web browser, powered by WebKit (Blink).

    This update upgrades Chromium to version 57.0.2987.133.

    Security Fix(es):

    * Multiple flaws were found in the processing of malformed web content. A web page containing malicious     content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when     visited by the victim. (CVE-2017-5055, CVE-2017-5052, CVE-2017-5053, CVE-2017-5054, CVE-2017-5056)

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

This update adds security fixes for CVE-2017-5052 and CVE-2017-5054, backported to Chromium 49 / QtWebEngine 5.6 by the Qt developers.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update updates QtWebEngine to the 5.9.0 release. QtWebEngine 5.9.0 is part of the Qt 5.9.0 release, but only the QtWebEngine component is included in this update.

The update fixes the following security issues in QtWebEngine 5.8.0:
CVE-2017-5006, CVE-2017-5007, CVE-2017-5008, CVE-2017-5009, CVE-2017-5010, CVE-2017-5011, CVE-2017-5012, CVE-2017-5013, CVE-2017-5014, CVE-2017-5015, CVE-2017-5016, CVE-2017-5017, CVE-2017-5018, CVE-2017-5019, CVE-2017-5020, CVE-2017-5021, CVE-2017-5022, CVE-2017-5023, CVE-2017-5024, CVE-2017-5025, CVE-2017-5026, CVE-2017-5027, CVE-2017-5029, CVE-2017-5032, CVE-2017-5033, CVE-2017-5034, CVE-2017-5036, CVE-2017-5039, CVE-2017-5040, CVE-2017-5044, CVE-2017-5045, CVE-2017-5046, CVE-2017-5052, CVE-2017-5053, CVE-2017-5055, CVE-2017-5057, CVE-2017-5058, CVE-2017-5059, CVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067, CVE-2017-5068, and CVE-2017-5069.

Other important changes include :

  - Based on Chromium 56.0.2924.122 with security fixes from     Chromium up to version 58.0.3029.96. (5.8.0 was based on     Chromium 53.0.2785.148 with security fixes from Chromium     up to version 55.0.2883.75.)

  - [QTBUG-54650, QTBUG-59922] Accessibility is now disabled     by default on Linux, like it is in Chrome, due to poor     options for enabling it conditionally and its heavy     performance impact. Set the environment variable     `QTWEBENGINE_ENABLE_LINUX_ACCESSIBILITY` to enable it     again.

  - [QTBUG-56531] Enabled `filesystem:` protocol handler.

  - [QTBUG-57720] Optimized incremental scene-graph     rendering in particular for software rendering.

  - [QTBUG-60049] Enabled brotli support.

  - Many bug fixes, see     https://code.qt.io/cgit/qt/qtwebengine.git/tree/dist/cha     nges-5.9.0?h=5.9 for details.

In addition, this build includes a fix for https://bugreports.qt.io/browse/QTBUG-61521 , a binary incompatibility in QtWebEngine 5.9.0 compared to 5.8.0.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of Google Chrome installed on the remote Windows host is prior to 57.0.2987.133. It is, therefore, affected by the following vulnerabilities :

  - A type cast error exists in Blink in the     LayoutInline::absoluteVisualRect() function within file     layout/LayoutInline.cpp that allows an unauthenticated,     remote attacker to cause an unspecified impact.
    (CVE-2017-5052)

  - An out-of-bounds read error exists in V8 in the     IndexOfValueImpl() function template within file     builtins/builtins-array.cc when handling arrays. An     unauthenticated, remote attacker can exploit this to     disclose memory content. (CVE-2017-5053)

  - A heap buffer overflow condition exists in V8 that     allows an unauthenticated, remote attacker to execute     arbitrary code. (CVE-2017-5054)

  - A use-after-free error exists in the PrintViewManager     class within file printing/print_view_manager.cc when     handling previews. An unauthenticated, remote attacker     can exploit this to deference already freed memory,     resulting in the execution arbitrary code.
    (CVE-2017-5055)

  - A use-after-free error exists in the Blink that allows     an unauthenticated, remote attacker to dereference     already freed memory, resulting in the execution of     arbitrary code. (CVE-2017-5056)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote host is prior to 57.0.2987.133, and is affected by multiple vulnerabilities :

 - A bad cast flaw exists in the 'LayoutInline::absoluteVisualRect()' function in 'layout/LayoutInline.cpp' that may allow a context-dependent attacker to have an unspecified impact. (CVE-2017-5052)
 - A use-after-free error exists in the 'PrintViewManager' class in printing'/print_view_manager.cc' that is triggered when handling previews. This may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. (CVE-2017-5055)
 - A use-after-free error exists in 'Blink' that may allow a context-dependent attacker to dereference already freed memory and potentially execute arbitrary code. (CVE-2017-5056)

ID	Name	Product	Family	Published	Updated	Severity
100606	Fedora 24 : 1:chromium-native_client / chromium (2017-7d698eba8b)	Nessus	Fedora Local Security Checks	6/5/2017	1/6/2021	critical
101624	Fedora 26 : chromium (2017-49f828d4b1)	Nessus	Fedora Local Security Checks	7/17/2017	1/11/2021	critical
99109	FreeBSD : chromium -- multiple vulnerabilities (7cf058d8-158d-11e7-ba2c-e8e0b747a45a)	Nessus	FreeBSD Local Security Checks	3/31/2017	1/4/2021	critical
99275	GLSA-201704-02 : Chromium: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	4/11/2017	6/8/2022	critical
99137	Google Chrome < 57.0.2987.133 Multiple Vulnerabilities (macOS)	Nessus	MacOS X Local Security Checks	3/31/2017	7/14/2018	high
99158	openSUSE Security Update : Chromium (openSUSE-2017-420)	Nessus	SuSE Local Security Checks	4/3/2017	1/19/2021	critical
99336	RHEL 6 : chromium-browser (RHSA-2017:0860)	Nessus	Red Hat Local Security Checks	4/13/2017	11/4/2024	critical
102389	Fedora 24 : qt5-qtwebengine (2017-5b199bf121)	Nessus	Fedora Local Security Checks	8/11/2017	1/6/2021	high
101504	Fedora 25 : qt5-qtwebengine (2017-58cde32413)	Nessus	Fedora Local Security Checks	7/13/2017	1/6/2021	critical
101740	Fedora 26 : qt5-qtwebengine (2017-e83c26a8c9)	Nessus	Fedora Local Security Checks	7/17/2017	1/6/2021	critical
99136	Google Chrome < 57.0.2987.133 Multiple Vulnerabilities	Nessus	Windows	3/31/2017	4/11/2022	high
99149	Fedora 25 : chromium (2017-ff6940bf63)	Nessus	Fedora Local Security Checks	4/3/2017	1/6/2021	critical
700054	Google Chrome < 57.0.2987.133 Multiple Vulnerabilities	Nessus Network Monitor	Web Clients	4/10/2017	3/6/2019	high

Detections

Analytics

Plugins Search

critical

critical

critical

critical

high

critical

critical

high

critical

critical

high

critical

high