Oval Definition:
oval:com.ubuntu.cosmic:def:201957680000000
Revision Date
:
2019-02-19
Version
:
1
Title
:
CVE-2019-5768 on Ubuntu 18.10 (cosmic) - medium.
Description
:
DevTools API not correctly gating on extension capability in DevTools in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension to read local files via a crafted Chrome Extension.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2019-5768
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
chromium-browser package in cosmic was vulnerable but has been fixed (note: '72.0.3626.119-0ubuntu0.18.10.1').
BACK