Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2018-6176

Insufficient file type enforcement in Extensions API in Google Chrome prior to 68.0.3440.75 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted Chrome Extension.

Related bugs and status

CVE-2018-6176 (Candidate) is related to these bugs:

Bug #1772448: launcher script runs Python 2 despite checking for /usr/bin/python3

Summary				In	Importance	Status
	1772448	launcher script runs Python 2 despite checking for /usr/bin/python3		chromium-browser (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://chromereleases...
MISC: https://crbug.com/666824