Описание
Security update for chromium
This update for chromium fixes the following issues:
- Chromium was updated to 89.0.4389.90 (boo#1183515)
- CVE-2021-21191: Use after free in WebRTC.
- CVE-2021-21192: Heap buffer overflow in tab groups.
- CVE-2021-21193: Use after free in Blink.
Список пакетов
openSUSE Leap 15.2
chromedriver-89.0.4389.90-lp152.2.80.1
chromium-89.0.4389.90-lp152.2.80.1
Ссылки
- E-Mail link for openSUSE-SU-2021:0436-1
- SUSE Security Ratings
- SUSE Bug 1183515
- SUSE CVE CVE-2021-21191 page
- SUSE CVE CVE-2021-21192 page
- SUSE CVE CVE-2021-21193 page
Описание
Use after free in WebRTC in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:chromedriver-89.0.4389.90-lp152.2.80.1
openSUSE Leap 15.2:chromium-89.0.4389.90-lp152.2.80.1
Ссылки
- CVE-2021-21191
- SUSE Bug 1183515
Описание
Heap buffer overflow in tab groups in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:chromedriver-89.0.4389.90-lp152.2.80.1
openSUSE Leap 15.2:chromium-89.0.4389.90-lp152.2.80.1
Ссылки
- CVE-2021-21192
- SUSE Bug 1183515
Описание
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:chromedriver-89.0.4389.90-lp152.2.80.1
openSUSE Leap 15.2:chromium-89.0.4389.90-lp152.2.80.1
Ссылки
- CVE-2021-21193
- SUSE Bug 1183515