Описание
Security update of chromium
Chromium was updated to 84.0.4147.105 (boo#1174582):
- CVE-2020-6537: Type Confusion in V8
- CVE-2020-6538: Inappropriate implementation in WebView
- CVE-2020-6532: Use after free in SCTP
- CVE-2020-6539: Use after free in CSS
- CVE-2020-6540: Heap buffer overflow in Skia
- CVE-2020-6541: Use after free in WebUSB
Список пакетов
openSUSE Leap 15.1
openSUSE Leap 15.2
Ссылки
- E-Mail link for openSUSE-SU-2020:1154-1
- SUSE Security Ratings
- SUSE Bug 1174582
- SUSE CVE CVE-2020-6532 page
- SUSE CVE CVE-2020-6537 page
- SUSE CVE CVE-2020-6538 page
- SUSE CVE CVE-2020-6539 page
- SUSE CVE CVE-2020-6540 page
- SUSE CVE CVE-2020-6541 page
Описание
Use after free in SCTP in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6532
- SUSE Bug 1174582
Описание
Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6537
- SUSE Bug 1174582
Описание
Inappropriate implementation in WebView in Google Chrome on Android prior to 84.0.4147.105 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6538
- SUSE Bug 1174582
Описание
Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6539
- SUSE Bug 1174582
Описание
Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6540
- SUSE Bug 1174582
Описание
Use after free in WebUSB in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2020-6541
- SUSE Bug 1174582