漏洞类别:Local
漏洞等级: 
漏洞信息
Google Chrome is a web browser for multiple platforms developed by Google.
This Google Chrome update fixes the following vulnerabilities:
CVE-2017-5070 Type confusion in V8.
CVE-2017-5071 Out of bounds read in V8.
CVE-2017-5072 Address spoofing in Omnibox.
CVE-2017-5073 Use after free in print preview.
CVE-2017-5074 Use after free in Apps Bluetooth.
CVE-2017-5075 Information leak in CSP reporting.
CVE-2017-5086 Address spoofing in Omnibox.
CVE-2017-5076 Address spoofing in Omnibox.
CVE-2017-5077 Heap buffer overflow in Skia.
CVE-2017-5078 Possible command injection in mailto handling.
CVE-2017-5079 UI spoofing in Blink.
CVE-2017-5080 Use after free in credit card autofill.
CVE-2017-5081 Extension verification bypass.
CVE-2017-5082 Insufficient hardening in credit card editor.
CVE-2017-5083 UI spoofing in Blink.
CVE-2017-5085 Inappropriate javascript execution on WebUI pages.
Affected Versions
Google Chrome Prior to 59.0.3071.86
漏洞危害
A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim.
解决方案
Customers are advised to upgrade to Google Chrome 59.0.3071.86 or a later version.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论