{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"52.0.2743.116-92.1","chromium":"52.0.2743.116-92.1","chromium-desktop-gnome":"52.0.2743.116-92.1","chromium-desktop-kde":"52.0.2743.116-92.1","chromium-ffmpegsumo":"52.0.2743.116-92.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"52.0.2743.116-92.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"Chromium was updated to 52.0.2743.116 to fix the following security issues: (boo#992305)\n\n- CVE-2016-5141: Address bar spoofing (boo#992314)\n- CVE-2016-5142: Use-after-free in Blink (boo#992313)\n- CVE-2016-5139: Heap overflow in pdfium (boo#992311)\n- CVE-2016-5140: Heap overflow in pdfium (boo#992310)\n- CVE-2016-5145: Same origin bypass for images in Blink (boo#992320)\n- CVE-2016-5143: Parameter sanitization failure in DevTools (boo#992319)\n- CVE-2016-5144: Parameter sanitization failure in DevTools (boo#992315)\n- CVE-2016-5146: Various fixes from internal audits, fuzzing and other initiatives (boo#992309)","id":"openSUSE-SU-2016:1982-1","modified":"2016-08-07T18:52:29Z","published":"2016-08-07T18:52:29Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NYQEG22WWDWBWP62EHVKSBZ23VETP5RQ/#NYQEG22WWDWBWP62EHVKSBZ23VETP5RQ"},{"type":"REPORT","url":"https://bugzilla.suse.com/992305"},{"type":"REPORT","url":"https://bugzilla.suse.com/992309"},{"type":"REPORT","url":"https://bugzilla.suse.com/992310"},{"type":"REPORT","url":"https://bugzilla.suse.com/992311"},{"type":"REPORT","url":"https://bugzilla.suse.com/992313"},{"type":"REPORT","url":"https://bugzilla.suse.com/992314"},{"type":"REPORT","url":"https://bugzilla.suse.com/992315"},{"type":"REPORT","url":"https://bugzilla.suse.com/992319"},{"type":"REPORT","url":"https://bugzilla.suse.com/992320"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5139"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5140"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5141"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5142"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5143"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5144"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5145"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-5146"}],"related":["CVE-2016-5139","CVE-2016-5140","CVE-2016-5141","CVE-2016-5142","CVE-2016-5143","CVE-2016-5144","CVE-2016-5145","CVE-2016-5146"],"summary":"Security update for Chromium","upstream":["CVE-2016-5139","CVE-2016-5140","CVE-2016-5141","CVE-2016-5142","CVE-2016-5143","CVE-2016-5144","CVE-2016-5145","CVE-2016-5146"]}