A heap buffer overflow flaw was found in the Skia component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=844457 External References: https://chromereleases.googleblog.com/2018/05/stable-channel-update-for-desktop_58.html
Created chromium tracking bugs for this issue: Affects: epel-7 [bug 1584060] Affects: fedora-all [bug 1584059]
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Supplementary Via RHSA-2018:1815 https://access.redhat.com/errata/RHSA-2018:1815
Mozilla Firefox ESR 52 and ESR 60 are also vulnerable. Upstream Advisory: https://www.mozilla.org/en-US/security/advisories/mfsa2018-14/
Created firefox tracking bugs for this issue: Affects: fedora-all [bug 1591518]
Mozilla advisory has little more details about this: A heap buffer overflow can occur in the Skia library when rasterizing paths using a maliciously crafted SVG file with anti-aliasing turned off. This results in a potentially exploitable crash. Mozilla bug, just like Chrome bug, remains non-public for now: https://bugzilla.mozilla.org/show_bug.cgi?id=1462682
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:2112 https://access.redhat.com/errata/RHSA-2018:2112
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:2113 https://access.redhat.com/errata/RHSA-2018:2113