Upstream information
Description
Insufficient policy enforcement in service workers in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
SUSE Bugzilla entry: 1133313 [RESOLVED / FIXED] SUSE Security Advisories:- openSUSE-SU-2019:1324-1, published Sat, 4 May 2019 15:09:40 +0200 (CEST)
- openSUSE-SU-2019:1325-1, published Sat, 4 May 2019 15:10:07 +0200 (CEST)
- openSUSE-SU-2019:1436-1, published Thu, 23 May 2019 00:11:00 +0200 (CEST)
- openSUSE-SU-2019:1666-1, published Fri, 28 Jun 2019 18:11:17 +0200 (CEST)
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Package Hub 12 SP3 |
| Patchnames: openSUSE-2019-1666 |
SUSE Package Hub 15 |
| Patchnames: openSUSE-2019-1436 openSUSE-2019-1666 |
openSUSE Leap 15.0 |
| Patchnames: openSUSE-2019-1325 openSUSE-2019-1666 |
openSUSE Leap 15.1 |
| Patchnames: openSUSE-2019-1666 |
openSUSE Tumbleweed |
| Patchnames: openSUSE Tumbleweed GA chromedriver-93.0.4577.82-1.1 |