Alert GCSA-19030 - Vulnerabilita' in Google Chrome
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-19030
Data: 14 marzo 2019
Titolo: Vulnerabilita' in Google Chrome
******************************************************************
:: Descrizione del problema
E' stato rilasciato un aggiornamento per Chrome che corregge 60 vulnerabilita'
di sicurezza riscontrate nel software.
La versione stabile del broswer Chrome e' stata aggiornata alla 73.0.3683.75
per Windows, Mac e Linux.
Nella sezione "Riferimenti" sono disponibili i link a informazioni piu' dettagliate.
:: Software interessato
Google Chrome versioni precedenti alla 73.0.3683.75
:: Impatto
Denial of Service
Esecuzione remota di codice arbitrario
Accesso a informazioni sensibili
Elusione di restrizioni di sicurezza
:: Soluzioni
Aggiornare Google Chrome all'ultima versione.
L'aggiornamento sara' automatico per tutte le installazioni in cui non sia stato disattivata l'opzione "aggiornamento automatico".
Per l'installazione manuale scaricare il software dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Google Chrome Advisory
https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html
US-CERT
https://www.us-cert.gov/ncas/current-activity/2019/03/13/Google-Releases-Security-Updates-Chrome
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5790
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5795
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5804
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFciiY4wZxMk2USYEIRAqWGAJ9Y0e5CS8k9WTI/PxHWPrDhuXhN6QCggTEj
2gj8vXxSvTj4GRjDzli4JU4=
=MTbg
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-19030
Data: 14 marzo 2019
Titolo: Vulnerabilita' in Google Chrome
******************************************************************
:: Descrizione del problema
E' stato rilasciato un aggiornamento per Chrome che corregge 60 vulnerabilita'
di sicurezza riscontrate nel software.
La versione stabile del broswer Chrome e' stata aggiornata alla 73.0.3683.75
per Windows, Mac e Linux.
Nella sezione "Riferimenti" sono disponibili i link a informazioni piu' dettagliate.
:: Software interessato
Google Chrome versioni precedenti alla 73.0.3683.75
:: Impatto
Denial of Service
Esecuzione remota di codice arbitrario
Accesso a informazioni sensibili
Elusione di restrizioni di sicurezza
:: Soluzioni
Aggiornare Google Chrome all'ultima versione.
L'aggiornamento sara' automatico per tutte le installazioni in cui non sia stato disattivata l'opzione "aggiornamento automatico".
Per l'installazione manuale scaricare il software dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Google Chrome Advisory
https://chromereleases.googleblog.com/2019/03/stable-channel-update-for-desktop_12.html
US-CERT
https://www.us-cert.gov/ncas/current-activity/2019/03/13/Google-Releases-Security-Updates-Chrome
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5790
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5791
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5794
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5795
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5797
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5804
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFciiY4wZxMk2USYEIRAqWGAJ9Y0e5CS8k9WTI/PxHWPrDhuXhN6QCggTEj
2gj8vXxSvTj4GRjDzli4JU4=
=MTbg
-----END PGP SIGNATURE-----