Ubuntu
chromium-browser package

78.0.3904.108-1 released for stable channel; fixes CVEs

Bug #1853149 reported by Jonathan Zhang
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
chromium-browser (Ubuntu)
Fix Released
High
Olivier Tilloy

Bug Description

Chromium 78.0.3904.108-1 is released, which fixes multiple CVEs (CVE-2019-13723, CVE-2019-13724).

Changelog is available at https://chromium.googlesource.com/chromium/src/+log/78.0.3904.97..78.0.3904.108?pretty=fuller&n=10000.

See: https://chromereleases.googleblog.com/2019/11/stable-channel-update-for-desktop_18.html

Olivier Tilloy (osomon)
Changed in chromium-browser (Ubuntu):
status: New → Triaged
importance: Undecided → High
assignee: nobody → Olivier Tilloy (osomon)
Olivier Tilloy (osomon)
Changed in chromium-browser (Ubuntu):
status: Triaged → In Progress
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package chromium-browser - 78.0.3904.108-0ubuntu0.16.04.1

---------------
chromium-browser (78.0.3904.108-0ubuntu0.16.04.1) xenial; urgency=medium

  * Upstream release: 78.0.3904.108 (LP: #1853149)
    - CVE-2019-13723: Use-after-free in Bluetooth.
    - CVE-2019-13724: Out-of-bounds access in Bluetooth.
  * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed

 -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:05:09 +0100

Changed in chromium-browser (Ubuntu):
status: In Progress → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package chromium-browser - 78.0.3904.108-0ubuntu0.18.04.1

---------------
chromium-browser (78.0.3904.108-0ubuntu0.18.04.1) bionic; urgency=medium

  * Upstream release: 78.0.3904.108 (LP: #1853149)
    - CVE-2019-13723: Use-after-free in Bluetooth.
    - CVE-2019-13724: Out-of-bounds access in Bluetooth.

 -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:31:49 +0100

Changed in chromium-browser (Ubuntu):
status: In Progress → Fix Released
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package chromium-browser - 78.0.3904.108-0ubuntu0.19.04.1

---------------
chromium-browser (78.0.3904.108-0ubuntu0.19.04.1) disco; urgency=medium

  * Upstream release: 78.0.3904.108 (LP: #1853149)
    - CVE-2019-13723: Use-after-free in Bluetooth.
    - CVE-2019-13724: Out-of-bounds access in Bluetooth.

 -- Olivier Tilloy <email address hidden> Tue, 19 Nov 2019 16:35:43 +0100

Changed in chromium-browser (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.