Operating System:

[Debian]

Published:

14 July 2020

Protect yourself against future threats.

//Service

Phishing Take-Down

Drawing on our strong international CERT relationships we have a high success rate in delivering phishing take-downs.

Read more
Resources > Security Bulletins > ESB-2020.2370 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2020.2370
                        chromium regression update
                               14 July 2020

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:          chromium
Publisher:        Debian
Operating System: Debian GNU/Linux 10
Impact/Access:    Denial of Service -- Unknown/Unspecified
Resolution:       Patch/Upgrade

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- - -------------------------------------------------------------------------
Debian Security Advisory DSA-4714-3                   security@debian.org
https://www.debian.org/security/                          Michael Gilbert
July 13, 2020                         https://www.debian.org/security/faq
- - -------------------------------------------------------------------------

Package        : chromium
Debian Bug     : 963548

The previous update for chromium released as DSA 4714-2 contained a flaw in
the service worker implementation.  This problem causes the browser to crash
when a connection error occurs.  Updated chromium packages are now available
that correct this issue.

For the stable distribution (buster), this problem has been fixed in
version 83.0.4103.116-1~deb10u3.

We recommend that you upgrade your chromium packages.

For the detailed security status of chromium please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/chromium

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
- -----BEGIN PGP SIGNATURE-----
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=MScf
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBXw02c+NLKJtyKPYoAQhUdQ/9HiNjgdPiR+rj5K9Bw4GHyGCPelARpswt
drxH6vBv4nOpGVHjLzX1eJfMe3F75A11QIYiKbD1oOaAwkKFZETXEbh4tv/UFoVj
wIbaa1yhGcU/UKkITpUsmcafhhPysdJnhx9KBlOnB9nZ2AnG6Jq2tWn89kpTjLk7
DDMjTeOM84x2ee4nUmVuLXiTxg7wxgKWkr/B/YAHgPUeFfIUwrk8UfVxtcOmBVAm
agNCCOGrMhgh2tXcyFZ2TLyhyrB7r7IvNNLyUErj9O8pDljPeFAjUnn66RZGe2jO
IxaSvfcJ50VT+gE6m9rCWPYsNj3I4FMU405J7Qje6Yo3jIsEjXDsl1BHbvl2Tu6r
16UhMM8J9dFlviN5kM3Alo3TMivRpl+Fjb2dwXeY5n8X1UrOWfN/3+sizKBkNhfn
yuccY4cXu0FAVY7JJvbh3VBYLTc8FDY/5oIGZSfqGHHAZhj49C1gz2GiuM4ce2pL
VrSAIgdYeeQ+10HlQWdlKPUKJm77v42b9C++sn6/B9nCJ5XGemHB+X4Q76RwInXo
hVkZDs7BF0Rf6vMwBQdH+lCESQlg74J/1Ni0OPGv6FSnSmYm+z2qxvzPUaYJY7eJ
Q2d9tLs8xKB4CAisMOGNDlrpuyWgmdcI4epitIN/u4CNsXR54WYNvELyvGNPDx7i
8P7Igor9acU=
=Vuqk
-----END PGP SIGNATURE-----