{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"57.0.2987.133-11.1","chromium":"57.0.2987.133-11.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12 SP2","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2012%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"57.0.2987.133-11.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update to Chromium 57.0.2987.133 fixes the following issues (boo#1031677):\n\n- CVE-2017-5055: Use after free in printing\n- CVE-2017-5054: Heap buffer overflow in V8\n- CVE-2017-5052: Bad cast in Blink\n- CVE-2017-5056: Use after free in Blink\n- CVE-2017-5053: Out of bounds memory access in V8\n\nThe following packaging changes are included:\n\n- No longer claim to provide browser(npapi)\n","id":"openSUSE-SU-2017:0909-1","modified":"2017-04-01T16:49:09Z","published":"2017-04-01T16:49:09Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YYKZ3STA6DNOFJBTBXMG4QNPXCHQVR4U/#YYKZ3STA6DNOFJBTBXMG4QNPXCHQVR4U"},{"type":"REPORT","url":"https://bugzilla.suse.com/1031677"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-5052"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-5053"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-5054"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-5055"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-5056"}],"related":["CVE-2017-5052","CVE-2017-5053","CVE-2017-5054","CVE-2017-5055","CVE-2017-5056"],"summary":"Security update for Chromium","upstream":["CVE-2017-5052","CVE-2017-5053","CVE-2017-5054","CVE-2017-5055","CVE-2017-5056"]}