{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Critical"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright © Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Chromium is an open-source web browser, powered by WebKit (Blink).\n\nThis update upgrades Chromium to version 72.0.3626.81.\n\nSecurity Fix(es):\n\n* chromium-browser: Inappropriate implementation in QUIC Networking (CVE-2019-5754)\n\n* chromium-browser: Inappropriate implementation in V8 (CVE-2019-5755)\n\n* chromium-browser: Use after free in PDFium (CVE-2019-5756)\n\n* chromium-browser: Type Confusion in SVG (CVE-2019-5757)\n\n* chromium-browser: Use after free in Blink (CVE-2019-5758)\n\n* chromium-browser: Use after free in HTML select elements (CVE-2019-5759)\n\n* chromium-browser: Use after free in WebRTC (CVE-2019-5760)\n\n* chromium-browser: Use after free in SwiftShader (CVE-2019-5761)\n\n* chromium-browser: Use after free in PDFium (CVE-2019-5762)\n\n* chromium-browser: Insufficient validation of untrusted input in V8 (CVE-2019-5763)\n\n* chromium-browser: Use after free in WebRTC (CVE-2019-5764)\n\n* chromium-browser: Insufficient policy enforcement in the browser (CVE-2019-5765)\n\n* chromium-browser: Inappropriate implementation in V8 (CVE-2019-5782)\n\n* chromium-browser: Insufficient policy enforcement in Canvas (CVE-2019-5766)\n\n* chromium-browser: Incorrect security UI in WebAPKs (CVE-2019-5767)\n\n* chromium-browser: Insufficient policy enforcement in DevTools (CVE-2019-5768)\n\n* chromium-browser: Insufficient validation of untrusted input in Blink (CVE-2019-5769)\n\n* chromium-browser: Heap buffer overflow in WebGL (CVE-2019-5770)\n\n* chromium-browser: Heap buffer overflow in SwiftShader (CVE-2019-5771)\n\n* chromium-browser: Use after free in PDFium (CVE-2019-5772)\n\n* chromium-browser: Insufficient data validation in IndexedDB (CVE-2019-5773)\n\n* chromium-browser: Insufficient validation of untrusted input in SafeBrowsing (CVE-2019-5774)\n\n* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5775)\n\n* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5776)\n\n* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5777)\n\n* chromium-browser: Insufficient policy enforcement in Extensions (CVE-2019-5778)\n\n* chromium-browser: Insufficient policy enforcement in ServiceWorker (CVE-2019-5779)\n\n* chromium-browser: Insufficient policy enforcement (CVE-2019-5780)\n\n* chromium-browser: Insufficient policy enforcement in Omnibox (CVE-2019-5781)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:0309",
        "url": "https://access.redhat.com/errata/RHSA-2019:0309"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#critical",
        "url": "https://access.redhat.com/security/updates/classification/#critical"
      },
      {
        "category": "external",
        "summary": "1670737",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670737"
      },
      {
        "category": "external",
        "summary": "1670738",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670738"
      },
      {
        "category": "external",
        "summary": "1670739",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670739"
      },
      {
        "category": "external",
        "summary": "1670740",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670740"
      },
      {
        "category": "external",
        "summary": "1670741",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670741"
      },
      {
        "category": "external",
        "summary": "1670742",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670742"
      },
      {
        "category": "external",
        "summary": "1670743",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670743"
      },
      {
        "category": "external",
        "summary": "1670744",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670744"
      },
      {
        "category": "external",
        "summary": "1670745",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670745"
      },
      {
        "category": "external",
        "summary": "1670746",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670746"
      },
      {
        "category": "external",
        "summary": "1670747",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670747"
      },
      {
        "category": "external",
        "summary": "1670748",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670748"
      },
      {
        "category": "external",
        "summary": "1670749",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670749"
      },
      {
        "category": "external",
        "summary": "1670750",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670750"
      },
      {
        "category": "external",
        "summary": "1670751",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670751"
      },
      {
        "category": "external",
        "summary": "1670752",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670752"
      },
      {
        "category": "external",
        "summary": "1670753",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670753"
      },
      {
        "category": "external",
        "summary": "1670754",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670754"
      },
      {
        "category": "external",
        "summary": "1670755",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670755"
      },
      {
        "category": "external",
        "summary": "1670756",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670756"
      },
      {
        "category": "external",
        "summary": "1670757",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670757"
      },
      {
        "category": "external",
        "summary": "1670758",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670758"
      },
      {
        "category": "external",
        "summary": "1670759",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670759"
      },
      {
        "category": "external",
        "summary": "1670760",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670760"
      },
      {
        "category": "external",
        "summary": "1670761",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670761"
      },
      {
        "category": "external",
        "summary": "1670762",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670762"
      },
      {
        "category": "external",
        "summary": "1670763",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670763"
      },
      {
        "category": "external",
        "summary": "1670764",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670764"
      },
      {
        "category": "external",
        "summary": "1670771",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670771"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_0309.json"
      }
    ],
    "title": "Red Hat Security Advisory: chromium-browser security update",
    "tracking": {
      "current_release_date": "2026-06-28T12:18:59+00:00",
      "generator": {
        "date": "2026-06-28T12:18:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.2.6"
        }
      },
      "id": "RHSA-2019:0309",
      "initial_release_date": "2019-02-12T02:46:01+00:00",
      "revision_history": [
        {
          "date": "2019-02-12T02:46:01+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-02-12T02:46:12+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-28T12:18:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
                  "product_id": "6Client-Supplementary-6.10.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
                  "product_id": "6Server-Supplementary-6.10.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
                  "product_id": "6Workstation-Supplementary-6.10.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras:6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Supplementary"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
                "product": {
                  "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
                  "product_id": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser-debuginfo@72.0.3626.81-1.el6_10?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
                "product": {
                  "name": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
                  "product_id": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser@72.0.3626.81-1.el6_10?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
                "product": {
                  "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
                  "product_id": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser-debuginfo@72.0.3626.81-1.el6_10?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
                "product": {
                  "name": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
                  "product_id": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/chromium-browser@72.0.3626.81-1.el6_10?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Client-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Client-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Client-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
          "product_id": "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Client-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Server-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Server-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Server-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
          "product_id": "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Server-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
        "relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
          "product_id": "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        },
        "product_reference": "chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
        "relates_to_product_reference": "6Workstation-Supplementary-6.10.z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-5754",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670737"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Implementation error in QUIC Networking in Google Chrome prior to 72.0.3626.81 allowed an attacker running or able to cause use of a proxy server to obtain cleartext of transport encryption via malicious network proxy.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Inappropriate implementation in QUIC Networking",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5754"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670737",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670737"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5754",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5754"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5754",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5754"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.6,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "chromium-browser: Inappropriate implementation in QUIC Networking"
    },
    {
      "cve": "CVE-2019-5755",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670739"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of negative zero in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Inappropriate implementation in V8",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5755"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670739",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670739"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5755",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5755"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5755",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5755"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Inappropriate implementation in V8"
    },
    {
      "cve": "CVE-2019-5756",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670740"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in PDFium",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5756"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670740",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670740"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5756",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5756"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5756",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5756"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in PDFium"
    },
    {
      "cve": "CVE-2019-5757",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670741"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An incorrect object type assumption in SVG in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Type Confusion in SVG",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5757"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670741",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670741"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5757",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5757"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5757",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5757"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Type Confusion in SVG"
    },
    {
      "cve": "CVE-2019-5758",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670742"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect object lifecycle management in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in Blink",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5758"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670742",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670742"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5758",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5758"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5758",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5758"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in Blink"
    },
    {
      "cve": "CVE-2019-5759",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670743"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect lifetime handling in HTML select elements in Google Chrome on Android and Mac prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in HTML select elements",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5759"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670743",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670743"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5759",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5759"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5759",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5759"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in HTML select elements"
    },
    {
      "cve": "CVE-2019-5760",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670744"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient checks of pointer validity in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in WebRTC",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5760"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670744",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670744"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5760",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5760"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5760",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5760"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in WebRTC"
    },
    {
      "cve": "CVE-2019-5761",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670745"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect object lifecycle management in SwiftShader in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in SwiftShader",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5761"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670745",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670745"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5761",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5761"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5761",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5761"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in SwiftShader"
    },
    {
      "cve": "CVE-2019-5762",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670746"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Inappropriate memory management when caching in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in PDFium",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5762"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670746",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670746"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5762",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5762"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5762",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5762"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in PDFium"
    },
    {
      "cve": "CVE-2019-5763",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670747"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Failure to check error conditions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient validation of untrusted input in V8",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5763"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670747",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670747"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5763",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5763"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5763",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5763"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Insufficient validation of untrusted input in V8"
    },
    {
      "cve": "CVE-2019-5764",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670748"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect pointer management in WebRTC in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in WebRTC",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5764"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670748",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670748"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5764",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5764"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5764",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5764"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Use after free in WebRTC"
    },
    {
      "cve": "CVE-2019-5765",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670749"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An exposed debugging endpoint in the browser in Google Chrome on Android prior to 72.0.3626.81 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted Intent.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in the browser",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5765"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670749",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670749"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5765",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5765"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5765",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5765"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in the browser"
    },
    {
      "cve": "CVE-2019-5766",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670750"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of origin taint checking in Canvas in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to leak cross-origin data via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Canvas",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5766"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670750",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670750"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5766",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5766"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5766",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5766"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Canvas"
    },
    {
      "cve": "CVE-2019-5767",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670751"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient protection of permission UI in WebAPKs in Google Chrome on Android prior to 72.0.3626.81 allowed an attacker who convinced the user to install a malicious application to access privacy/security sensitive web APIs via a crafted APK.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Incorrect security UI in WebAPKs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5767"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670751",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670751"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5767",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5767"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5767",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5767"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Incorrect security UI in WebAPKs"
    },
    {
      "cve": "CVE-2019-5768",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670752"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "DevTools API not correctly gating on extension capability in DevTools in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension to read local files via a crafted Chrome Extension.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in DevTools",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5768"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670752",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670752"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5768",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5768"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5768",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5768"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in DevTools"
    },
    {
      "cve": "CVE-2019-5769",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670753"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of invalid end character position when front rendering in Blink in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient validation of untrusted input in Blink",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5769"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670753",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670753"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5769",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5769"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5769",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5769"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient validation of untrusted input in Blink"
    },
    {
      "cve": "CVE-2019-5770",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670754"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient input validation in WebGL in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Heap buffer overflow in WebGL",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5770"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670754",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670754"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5770",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5770"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5770",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5770"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Heap buffer overflow in WebGL"
    },
    {
      "cve": "CVE-2019-5771",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670755"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An incorrect JIT of GLSL shaders in SwiftShader in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Heap buffer overflow in SwiftShader",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5771"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670755",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670755"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5771",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5771"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5771",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5771"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Heap buffer overflow in SwiftShader"
    },
    {
      "cve": "CVE-2019-5772",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670756"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Sharing of objects over calls into JavaScript runtime in PDFium in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Use after free in PDFium",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5772"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670756",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670756"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5772",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5772"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5772",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5772"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Use after free in PDFium"
    },
    {
      "cve": "CVE-2019-5773",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670757"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient origin validation in IndexedDB in Google Chrome prior to 72.0.3626.81 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient data validation in IndexedDB",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5773"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670757",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670757"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5773",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5773"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5773",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5773"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient data validation in IndexedDB"
    },
    {
      "cve": "CVE-2019-5774",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670758"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file to execute arbitrary code via a downloaded .desktop file.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient validation of untrusted input in SafeBrowsing",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5774"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670758",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670758"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5774",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5774"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5774",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5774"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient validation of untrusted input in SafeBrowsing"
    },
    {
      "cve": "CVE-2019-5775",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670759"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Omnibox",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5775"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670759",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670759"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5775",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5775"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5775",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5775"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Omnibox"
    },
    {
      "cve": "CVE-2019-5776",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670760"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Omnibox",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5776"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670760",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670760"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5776",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5776"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5776",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5776"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Omnibox"
    },
    {
      "cve": "CVE-2019-5777",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670761"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Omnibox",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5777"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670761",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670761"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5777",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5777"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5777",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5777"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Omnibox"
    },
    {
      "cve": "CVE-2019-5778",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670762"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A missing case for handling special schemes in permission request checks in Extensions in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension to bypass extension permission checks for privileged pages via a crafted Chrome Extension.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Extensions",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5778"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670762",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670762"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5778",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5778"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5778",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5778"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Extensions"
    },
    {
      "cve": "CVE-2019-5779",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670763"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient policy validation in ServiceWorker in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in ServiceWorker",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5779"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670763",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670763"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5779",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5779"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5779",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5779"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in ServiceWorker"
    },
    {
      "cve": "CVE-2019-5780",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670764"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior to 72.0.3626.81 allowed a local attacker to execute JavaScript via Apple Events.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5780"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670764",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670764"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5780",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5780"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5780",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5780"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement"
    },
    {
      "cve": "CVE-2019-5781",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670771"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Insufficient policy enforcement in Omnibox",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5781"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670771",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670771"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5781",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5781"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5781",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5781"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "chromium-browser: Insufficient policy enforcement in Omnibox"
    },
    {
      "cve": "CVE-2019-5782",
      "discovery_date": "2019-01-30T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1670738"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Incorrect optimization assumptions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "chromium-browser: Inappropriate implementation in V8",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
          "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-5782"
        },
        {
          "category": "external",
          "summary": "RHBZ#1670738",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1670738"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-5782",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-5782"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-5782",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-5782"
        },
        {
          "category": "external",
          "summary": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html",
          "url": "https://chromereleases.googleblog.com/2019/01/stable-channel-update-for-desktop.html"
        }
      ],
      "release_date": "2019-01-29T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-02-12T02:46:01+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the update, Chromium must be restarted for the changes to take effect.",
          "product_ids": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:0309"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Client-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Server-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-0:72.0.3626.81-1.el6_10.x86_64",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.i686",
            "6Workstation-Supplementary-6.10.z:chromium-browser-debuginfo-0:72.0.3626.81-1.el6_10.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "chromium-browser: Inappropriate implementation in V8"
    }
  ]
}