[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2018:4143-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":68,"duplicates":69,"related":70,"reserved_at":9,"published_at":98,"modified_at":99,"state":9,"summary":100,"references_raw":102,"kevs":227,"epss":9,"epss_history":228,"metrics":229,"affected":230},"OPENSUSE-SU-2018:4143-1","Security update for Chromium\n\nThis update to Chromium 71.0.3578.98 fixes the following issues:\n\nSecurity issues fixed (boo#1118529):\n\n- CVE-2018-17480: Out of bounds write in V8\n- CVE-2018-17481: Use after frees in PDFium\n- CVE-2018-18335: Heap buffer overflow in Skia\n- CVE-2018-18336: Use after free in PDFium\n- CVE-2018-18337: Use after free in Blink\n- CVE-2018-18338: Heap buffer overflow in Canvas\n- CVE-2018-18339: Use after free in WebAudio\n- CVE-2018-18340: Use after free in MediaRecorder\n- CVE-2018-18341: Heap buffer overflow in Blink\n- CVE-2018-18342: Out of bounds write in V8\n- CVE-2018-18343: Use after free in Skia\n- CVE-2018-18344: Inappropriate implementation in Extensions\n- Multiple issues in SQLite via WebSQL\n- CVE-2018-18345: Inappropriate implementation in Site Isolation\n- CVE-2018-18346: Incorrect security UI in Blink\n- CVE-2018-18347: Inappropriate implementation in Navigation\n- CVE-2018-18348: Inappropriate implementation in Omnibox\n- CVE-2018-18349: Insufficient policy enforcement in Blink\n- CVE-2018-18350: Insufficient policy enforcement in Blink\n- CVE-2018-18351: Insufficient policy enforcement in Navigation\n- CVE-2018-18352: Inappropriate implementation in Media\n- CVE-2018-18353: Inappropriate implementation in Network Authentication\n- CVE-2018-18354: Insufficient data validation in Shell Integration\n- CVE-2018-18355: Insufficient policy enforcement in URL Formatter\n- CVE-2018-18356: Use after free in Skia\n- CVE-2018-18357: Insufficient policy enforcement in URL Formatter\n- CVE-2018-18358: Insufficient policy enforcement in Proxy\n- CVE-2018-18359: Out of bounds read in V8\n- Inappropriate implementation in PDFium\n- Use after free in Extensions\n- Inappropriate implementation in Navigation\n- Insufficient policy enforcement in Navigation\n- Insufficient policy enforcement in URL Formatter\n- Various fixes from internal audits, fuzzing and other initiatives\n- CVE-2018-17481: Use after free in PDFium (boo#1119364)\n\nThe following changes are included:\n\n- advertisements posing as error messages are now blocked\n- Automatic playing of content at page load mostly disabled\n- New JavaScript API for relative time display\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66],{"_key":15},"CVE-2018-17480",{"_key":17},"CVE-2018-17481",{"_key":19},"CVE-2018-18335",{"_key":21},"CVE-2018-18336",{"_key":23},"CVE-2018-18337",{"_key":25},"CVE-2018-18338",{"_key":27},"CVE-2018-18339",{"_key":29},"CVE-2018-18340",{"_key":31},"CVE-2018-18341",{"_key":33},"CVE-2018-18342",{"_key":35},"CVE-2018-18343",{"_key":37},"CVE-2018-18344",{"_key":39},"CVE-2018-18345",{"_key":41},"CVE-2018-18346",{"_key":43},"CVE-2018-18347",{"_key":45},"CVE-2018-18348",{"_key":47},"CVE-2018-18349",{"_key":49},"CVE-2018-18350",{"_key":51},"CVE-2018-18351",{"_key":53},"CVE-2018-18352",{"_key":55},"CVE-2018-18353",{"_key":57},"CVE-2018-18354",{"_key":59},"CVE-2018-18355",{"_key":61},"CVE-2018-18356",{"_key":63},"CVE-2018-18357",{"_key":65},"CVE-2018-18358",{"_key":67},"CVE-2018-18359",[],[],[71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},"2018-12-15T09:27:33Z","2026-02-04T03:42:08.259455Z",{"cisa_kev":101,"cisa_ransomware":101,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[103,109,114,118,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187,191,195,199,203,207,211,215,219,223],{"url":104,"sources":105,"tags":107},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46/#PWE5NUKJ4YIN5BIHKKSD55F2QU6JUG46",[106],"osv_suse",[108],"Advisory",{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1118529",[106],[113],"REPORT",{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1119364",[106],[113],{"url":119,"sources":120,"tags":121},"https://www.suse.com/security/cve/CVE-2018-17480",[106],[122],"WEB",{"url":124,"sources":125,"tags":126},"https://www.suse.com/security/cve/CVE-2018-17481",[106],[122],{"url":128,"sources":129,"tags":130},"https://www.suse.com/security/cve/CVE-2018-18335",[106],[122],{"url":132,"sources":133,"tags":134},"https://www.suse.com/security/cve/CVE-2018-18336",[106],[122],{"url":136,"sources":137,"tags":138},"https://www.suse.com/security/cve/CVE-2018-18337",[106],[122],{"url":140,"sources":141,"tags":142},"https://www.suse.com/security/cve/CVE-2018-18338",[106],[122],{"url":144,"sources":145,"tags":146},"https://www.suse.com/security/cve/CVE-2018-18339",[106],[122],{"url":148,"sources":149,"tags":150},"https://www.suse.com/security/cve/CVE-2018-18340",[106],[122],{"url":152,"sources":153,"tags":154},"https://www.suse.com/security/cve/CVE-2018-18341",[106],[122],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2018-18342",[106],[122],{"url":160,"sources":161,"tags":162},"https://www.suse.com/security/cve/CVE-2018-18343",[106],[122],{"url":164,"sources":165,"tags":166},"https://www.suse.com/security/cve/CVE-2018-18344",[106],[122],{"url":168,"sources":169,"tags":170},"https://www.suse.com/security/cve/CVE-2018-18345",[106],[122],{"url":172,"sources":173,"tags":174},"https://www.suse.com/security/cve/CVE-2018-18346",[106],[122],{"url":176,"sources":177,"tags":178},"https://www.suse.com/security/cve/CVE-2018-18347",[106],[122],{"url":180,"sources":181,"tags":182},"https://www.suse.com/security/cve/CVE-2018-18348",[106],[122],{"url":184,"sources":185,"tags":186},"https://www.suse.com/security/cve/CVE-2018-18349",[106],[122],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2018-18350",[106],[122],{"url":192,"sources":193,"tags":194},"https://www.suse.com/security/cve/CVE-2018-18351",[106],[122],{"url":196,"sources":197,"tags":198},"https://www.suse.com/security/cve/CVE-2018-18352",[106],[122],{"url":200,"sources":201,"tags":202},"https://www.suse.com/security/cve/CVE-2018-18353",[106],[122],{"url":204,"sources":205,"tags":206},"https://www.suse.com/security/cve/CVE-2018-18354",[106],[122],{"url":208,"sources":209,"tags":210},"https://www.suse.com/security/cve/CVE-2018-18355",[106],[122],{"url":212,"sources":213,"tags":214},"https://www.suse.com/security/cve/CVE-2018-18356",[106],[122],{"url":216,"sources":217,"tags":218},"https://www.suse.com/security/cve/CVE-2018-18357",[106],[122],{"url":220,"sources":221,"tags":222},"https://www.suse.com/security/cve/CVE-2018-18358",[106],[122],{"url":224,"sources":225,"tags":226},"https://www.suse.com/security/cve/CVE-2018-18359",[106],[122],[],[],[],[231],{"ecosystem":232,"name":233,"vendor":234,"product":235,"cpe_part":9,"purl_type":236,"purl_namespace":234,"purl_name":235,"source":9,"versions":237},"SUSE Linux Enterprise","chromium","suse","chromium&distro=SUSE Package Hub 12 SP2","rpm",[238],{"version":239,"is_range":240,"range_type":241,"version_start":9,"version_start_type":9,"version_end":242,"version_end_type":243,"fixed_in":9},"lt71_0_3578_98_80_1",true,"ecosystem","71.0.3578.98-80.1","excluding"]