{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"79.0.3945.79-bp151.3.35.1","chromium":"79.0.3945.79-bp151.3.35.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP1","name":"chromium","purl":"pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"79.0.3945.79-bp151.3.35.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for chromium fixes the following issues:\n\nChromium was updated to 79.0.3945.79 (boo#1158982)\t  \n\n-  CVE-2019-13725: Fixed a use after free in Bluetooth\n-  CVE-2019-13726: Fixed a heap buffer overflow in password manager\n-  CVE-2019-13727: Fixed an insufficient policy enforcement in WebSockets\n-  CVE-2019-13728: Fixed an out of bounds write in V8\n-  CVE-2019-13729: Fixed a use after free in WebSockets\n-  CVE-2019-13730: Fixed a type Confusion in V8\n-  CVE-2019-13732: Fixed a use after free in WebAudio\n-  CVE-2019-13734: Fixed an out of bounds write in SQLite\n-  CVE-2019-13735: Fixed an out of bounds write in V8\n-  CVE-2019-13764: Fixed a type Confusion in V8\n-  CVE-2019-13736: Fixed an integer overflow in PDFium\n-  CVE-2019-13737: Fixed an insufficient policy enforcement in autocomplete\n-  CVE-2019-13738: Fixed an insufficient policy enforcement in navigation\n-  CVE-2019-13739: Fixed an incorrect security UI in Omnibox\n-  CVE-2019-13740: Fixed an incorrect security UI in sharing\n-  CVE-2019-13741: Fixed an insufficient validation of untrusted input in Blink\n-  CVE-2019-13742: Fixed an incorrect security UI in Omnibox\n-  CVE-2019-13743: Fixed an incorrect security UI in external protocol handling\n-  CVE-2019-13744: Fixed an insufficient policy enforcement in cookies\n-  CVE-2019-13745: Fixed an insufficient policy enforcement in audio\n-  CVE-2019-13746: Fixed an insufficient policy enforcement in Omnibox\n-  CVE-2019-13747: Fixed an uninitialized Use in rendering\n-  CVE-2019-13748: Fixed an insufficient policy enforcement in developer tools\n-  CVE-2019-13749: Fixed an incorrect security UI in Omnibox\n-  CVE-2019-13750: Fixed an insufficient data validation in SQLite\n-  CVE-2019-13751: Fixed an uninitialized Use in SQLite\n-  CVE-2019-13752: Fixed an out of bounds read in SQLite\n-  CVE-2019-13753: Fixed an out of bounds read in SQLite\n-  CVE-2019-13754: Fixed an insufficient policy enforcement in extensions\n-  CVE-2019-13755: Fixed an insufficient policy enforcement in extensions\n-  CVE-2019-13756: Fixed an incorrect security UI in printing\n-  CVE-2019-13757: Fixed an incorrect security UI in Omnibox\n-  CVE-2019-13758: Fixed an insufficient policy enforcement in navigation\n-  CVE-2019-13759: Fixed an incorrect security UI in interstitials\n-  CVE-2019-13761: Fixed an incorrect security UI in Omnibox\n-  CVE-2019-13762: Fixed an insufficient policy enforcement in downloads\n-  CVE-2019-13763: Fixed an insufficient policy enforcement in payments\n\nThis update was imported from the openSUSE:Leap:15.1:Update update project.","id":"openSUSE-SU-2019:2694-1","modified":"2019-12-18T09:15:54Z","published":"2019-12-18T09:15:54Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/M7S2JFSREIHYGCP4KXIISPEHVMV7FBWS/#M7S2JFSREIHYGCP4KXIISPEHVMV7FBWS"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158982"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13725"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13726"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13727"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13728"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13729"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13730"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13732"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13734"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13735"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13736"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13737"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13738"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13739"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13740"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13741"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13742"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13743"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13744"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13745"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13746"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13747"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13748"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13749"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13750"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13751"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13752"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13753"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13754"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13755"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13756"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13757"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13758"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13759"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13761"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13762"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13763"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-13764"}],"related":["CVE-2019-13725","CVE-2019-13726","CVE-2019-13727","CVE-2019-13728","CVE-2019-13729","CVE-2019-13730","CVE-2019-13732","CVE-2019-13734","CVE-2019-13735","CVE-2019-13736","CVE-2019-13737","CVE-2019-13738","CVE-2019-13739","CVE-2019-13740","CVE-2019-13741","CVE-2019-13742","CVE-2019-13743","CVE-2019-13744","CVE-2019-13745","CVE-2019-13746","CVE-2019-13747","CVE-2019-13748","CVE-2019-13749","CVE-2019-13750","CVE-2019-13751","CVE-2019-13752","CVE-2019-13753","CVE-2019-13754","CVE-2019-13755","CVE-2019-13756","CVE-2019-13757","CVE-2019-13758","CVE-2019-13759","CVE-2019-13761","CVE-2019-13762","CVE-2019-13763","CVE-2019-13764"],"summary":"Security update for chromium","upstream":["CVE-2019-13725","CVE-2019-13726","CVE-2019-13727","CVE-2019-13728","CVE-2019-13729","CVE-2019-13730","CVE-2019-13732","CVE-2019-13734","CVE-2019-13735","CVE-2019-13736","CVE-2019-13737","CVE-2019-13738","CVE-2019-13739","CVE-2019-13740","CVE-2019-13741","CVE-2019-13742","CVE-2019-13743","CVE-2019-13744","CVE-2019-13745","CVE-2019-13746","CVE-2019-13747","CVE-2019-13748","CVE-2019-13749","CVE-2019-13750","CVE-2019-13751","CVE-2019-13752","CVE-2019-13753","CVE-2019-13754","CVE-2019-13755","CVE-2019-13756","CVE-2019-13757","CVE-2019-13758","CVE-2019-13759","CVE-2019-13761","CVE-2019-13762","CVE-2019-13763","CVE-2019-13764"]}