漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
Multiple vulnerabilities were discovered in Chromium.
漏洞危害
If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to obtain sensitive information, spoof application UI by causing the security status API or webview URL to indicate the wrong values, bypass security restrictions, cause a denial of service via application crash, or execute arbitrary code. (CVE-2017-5029, CVE-2017-5030, CVE-2017-5031, CVE-2017-5033, CVE-2017-5035, CVE-2017-5037, CVE-2017-5040, CVE-2017-5041, CVE-2017-5044, CVE-2017-5045, CVE-2017-5046)
解决方案
Refer to Ubuntu advisory USN-3236-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3236-1: 14.04 (Kylin) on src (liboxideqtcore0)
0day
文章评论