vulnerability

CentOS Linux: CVE-2017-5025: Important: chromium-browser security update (CESA-2017:0206)

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Feb 17, 2017

Added

Aug 28, 2019

Modified

May 25, 2023

Description

FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file.

Solutions

centos-upgrade-chromium-browsercentos-upgrade-chromium-browser-debuginfo

References

BID-95792
DEBIAN-DSA-3776
DISA_SEVERITY-Category I
IAVM-2017-B-0015
NVD-CVE-2017-5025
REDHAT-RHSA-2017:0206

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report