漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
Multiple security vulnerabilities were discovered in Chromium.
A heap-corruption issue was discovered in FFmpeg.
漏洞危害
If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to obtain sensitive information, cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5198, CVE-2016-5200, CVE-2016-5202)
If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or execute arbitrary code. (CVE-2016-5199)
解决方案
Refer to Ubuntu advisory USN-3133-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3133-1: 14.04 (Kylin) on src (liboxideqtcore0)
0day
文章评论