Alert GCSA-17045 - Vulnerabilita' in Google Chrome
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-17045
Data: 28 Luglio 2017
Titolo: Vulnerabilita' in Google Chrome
**********************************************************************
:: Descrizione del problema
Google ha rilasciato una nuova versione del browser Chrome
che risolve alcune vulnerabilita' presenti del software.
Per una descrizione completa delle vulnerabilita' si rimanda
alla sezione "Riferimenti".
:: Software interessato
Google Chrome versioni precedenti alla 60.0.3112.78
per Windows, Mac e Linux.
:: Impatto
Controllo remoto del sistema
:: Soluzioni
Aggiornare Google Chrome alla versione 60.0.3112.78
L'aggiornamento sara' automatico per tutte le installazioni
in cui non sia stata disattivata l'opzione "aggiornamento
automatico".
Per l'installazione manuale scaricare il software
dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html
US-CERT
https://www.us-cert.gov/ncas/current-activity/2017/07/26/Google-Releases-Security-Updates-Chrome
Security Focus
http://www.securityfocus.com/bid/99950
Mitre CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5100
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5105
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5109
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5110
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAll7SlUACgkQwZxMk2USYEJNHwCeMYIbc6JoRY9L7rKIY18lIVIN
aPsAoIFbkwCAMAkMjWJ1N+HbmRXCqBHn
=COTg
-----END PGP SIGNATURE-----
Hash: SHA1
**********************************************************************
Alert ID: GCSA-17045
Data: 28 Luglio 2017
Titolo: Vulnerabilita' in Google Chrome
**********************************************************************
:: Descrizione del problema
Google ha rilasciato una nuova versione del browser Chrome
che risolve alcune vulnerabilita' presenti del software.
Per una descrizione completa delle vulnerabilita' si rimanda
alla sezione "Riferimenti".
:: Software interessato
Google Chrome versioni precedenti alla 60.0.3112.78
per Windows, Mac e Linux.
:: Impatto
Controllo remoto del sistema
:: Soluzioni
Aggiornare Google Chrome alla versione 60.0.3112.78
L'aggiornamento sara' automatico per tutte le installazioni
in cui non sia stata disattivata l'opzione "aggiornamento
automatico".
Per l'installazione manuale scaricare il software
dal sito ufficiale:
http://www.google.com/chrome/?hl=it
:: Riferimenti
Chrome Releases: Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html
US-CERT
https://www.us-cert.gov/ncas/current-activity/2017/07/26/Google-Releases-Security-Updates-Chrome
Security Focus
http://www.securityfocus.com/bid/99950
Mitre CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5100
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5105
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5107
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5109
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5110
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAll7SlUACgkQwZxMk2USYEJNHwCeMYIbc6JoRY9L7rKIY18lIVIN
aPsAoIFbkwCAMAkMjWJ1N+HbmRXCqBHn
=COTg
-----END PGP SIGNATURE-----