Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium was updated to version 80.0.3987.122 (bsc#1164828).
Security issues fixed:
- CVE-2020-6418: Fixed a type confusion in V8 (bsc#1164828).
- CVE-2020-6407: Fixed an OOB memory access in streams (bsc#1164828).
- Fixed an integer overflow in ICU (bsc#1164828).
Non-security issues fixed:
- Dropped the sandbox binary as it should not be needed anymore (bsc#1163588).
Список пакетов
openSUSE Leap 15.1
chromedriver-80.0.3987.122-lp151.2.66.1
chromium-80.0.3987.122-lp151.2.66.1
Ссылки
- E-Mail link for openSUSE-SU-2020:0259-1
- SUSE Security Ratings
- SUSE Bug 1163484
- SUSE Bug 1163588
- SUSE Bug 1164828
- SUSE CVE CVE-2020-6407 page
- SUSE CVE CVE-2020-6418 page
Описание
Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.1:chromedriver-80.0.3987.122-lp151.2.66.1
openSUSE Leap 15.1:chromium-80.0.3987.122-lp151.2.66.1
Ссылки
- CVE-2020-6407
- SUSE Bug 1164828
Описание
Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.1:chromedriver-80.0.3987.122-lp151.2.66.1
openSUSE Leap 15.1:chromium-80.0.3987.122-lp151.2.66.1
Ссылки
- CVE-2020-6418
- SUSE Bug 1164828