Описание
Security update for chromium
This update for chromium fixes the following issues:
- Chromium 89.0.4389.128 (boo#1184700):
- CVE-2021-21206: Use after free in blink
- CVE-2021-21220: Insufficient validation of untrusted input in v8 for x86_64
Список пакетов
openSUSE Leap 15.2
chromedriver-89.0.4389.128-lp152.2.86.1
chromium-89.0.4389.128-lp152.2.86.1
Ссылки
- E-Mail link for openSUSE-SU-2021:0567-1
- SUSE Security Ratings
- SUSE Bug 1184700
- SUSE CVE CVE-2021-21206 page
- SUSE CVE CVE-2021-21220 page
Описание
Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:chromedriver-89.0.4389.128-lp152.2.86.1
openSUSE Leap 15.2:chromium-89.0.4389.128-lp152.2.86.1
Ссылки
- CVE-2021-21206
- SUSE Bug 1184700
Описание
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
openSUSE Leap 15.2:chromedriver-89.0.4389.128-lp152.2.86.1
openSUSE Leap 15.2:chromium-89.0.4389.128-lp152.2.86.1
Ссылки
- CVE-2021-21220
- SUSE Bug 1184700