Oval Definition:
oval:com.ubuntu.cosmic:def:201958380000000
Revision Date
:
2019-06-27
Version
:
1
Title
:
CVE-2019-5838 on Ubuntu 18.10 (cosmic) - medium.
Description
:
Insufficient policy enforcement in extensions API in Google Chrome prior to 75.0.3770.80 allowed an attacker who convinced a user to install a malicious extension to bypass restrictions on file URIs via a crafted Chrome Extension.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2019-5838
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
chromium-browser package in cosmic, is related to the CVE in some way and has been fixed (note: '75.0.3770.90-0ubuntu0.18.04.1').
BACK