CVE-2019-5767 in Ubuntu

CVE-2019-5767

Priority

Description

Insufficient protection of permission UI in WebAPKs in Google Chrome on
Android prior to 72.0.3626.81 allowed an attacker who convinced the user to
install a malicious application to access privacy/security sensitive web
APIs via a crafted APK.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5767

Notes

Package

Source: chromium-browser (LP Ubuntu Debian)

Upstream:	released (72.0.3626.81)
Ubuntu 12.04 ESM (Precise Pangolin):	DNE
Ubuntu 14.04 ESM (Trusty Tahr):	DNE (trusty was ignored [no longer updated])
Ubuntu 16.04 LTS (Xenial Xerus):	released (72.0.3626.119-0ubuntu0.16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):	released (72.0.3626.119-0ubuntu0.18.04.1)
Ubuntu 19.04 (Disco Dingo):	released (72.0.3626.81-0ubuntu1)

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2019-12-05 18:51:35 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)