Welcome Guest Search | Active Topics | Sign In | Register

Essential Objects Product Support Forum » All Products » Support » CVE-2019-5786 : Chrome Zero Day Vulnerability

CVE-2019-5786 : Chrome Zero Day Vulnerability Options
Previous Topic · Next Topic
Dustin
Posted: Tuesday, April 9, 2019 2:34:40 PM
Rank: Newbie
Groups: Member

Joined: 4/9/2019
Posts: 1
A Chrome Zero Day vulnerability CVE-2019-5786 was disclosed in the beginning of March which was fixed by Chromium 72.0.3626.121.
I didn't see any mention of this in the releases since this vulnerability was disclosed.
Are there any plans to update or patch Chromium to fix this exploit?

Looks like a pretty through analysis was done by McAfee here
Back to top
 
eo_support
Posted: Tuesday, April 9, 2019 5:16:38 PM
Rank: Administration
Groups: Administration

Joined: 5/27/2007
Posts: 24,218
Thanks for the information. It looks like the fix is rarely simple. We will see if we can port the fix into our code base.
Back to top
 
eo_support
Posted: Friday, April 12, 2019 9:52:33 AM
Rank: Administration
Groups: Administration

Joined: 5/27/2007
Posts: 24,218
Hi,

This is just to let you know that we have posted build 19.1.11 that contains this security patch. Note that the official chromium version that contains this patch is 72.0.3626.121, we did NOT update the entire chromium browser engine to that version. Instead we only back ported the patch into our version.

Thanks!
Back to top
 


You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.