FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple vulnerabilities

Affected packages
		chromium	<	66.0.3359.170

Details

VuXML ID	e457978b-5484-11e8-9b85-54ee754af08e
Discovery	2018-04-14
Entry	2018-05-11

Google Chrome Releases reports:

4 security fixes in this release:

[835887] Critical: Chain leading to sandbox escape. Reported by Anonymous on 2018-04-23

[836858] High CVE-2018-6121: Privilege Escalation in extensions

[836141] High CVE-2018-6122: Type confusion in V8

[833721] High CVE-2018-6120: Heap buffer overflow in PDFium. Reported by Zhou Aiting(@zhouat1) of Qihoo 360 Vulcan Team on 2018-04-17

[841841] Various fixes from internal audits, fuzzing and other initiatives

[source]

References

CVE Name	CVE-2018-6120
CVE Name	CVE-2018-6121
CVE Name	CVE-2018-6122
URL	https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop.html