Описание
Security update for opera
This update for opera fixes the following issues:
Update to version 76.0.4017.107
- CHR-8413 Update chromium on desktop-stable-90-4017 to 90.0.4430.93
- DNA-90168 Display SD suggestions titles
- DNA-92693 ‘Re-attach tab’ overlay is not resized with window
- DNA-92926 [Mac][Cashback] “Close Tab” menu item not greyed out for Cashback corner
- DNA-92934 Report crashes from opera://crashes and Tooltip to new Atlassian
- DNA-92980 Enable tutorials flag on all streams
- The update to chromium 90.0.4430.93 fixes following issues:
CVE-2021-21227, CVE-2021-21232, CVE-2021-21233, CVE-2021-21228, CVE-2021-21229, CVE-2021-21230, CVE-2021-21231
Список пакетов
openSUSE Leap 15.2 NonFree
Ссылки
- E-Mail link for openSUSE-SU-2021:0729-1
- SUSE Security Ratings
- SUSE CVE CVE-2021-21227 page
- SUSE CVE CVE-2021-21228 page
- SUSE CVE CVE-2021-21229 page
- SUSE CVE CVE-2021-21230 page
- SUSE CVE CVE-2021-21231 page
- SUSE CVE CVE-2021-21232 page
- SUSE CVE CVE-2021-21233 page
Описание
Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21227
- SUSE Bug 1185375
Описание
Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Затронутые продукты
Ссылки
- CVE-2021-21228
- SUSE Bug 1185375
Описание
Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21229
- SUSE Bug 1185375
Описание
Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21230
- SUSE Bug 1185375
Описание
Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21231
- SUSE Bug 1185375
Описание
Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21232
- SUSE Bug 1185375
Описание
Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-21233
- SUSE Bug 1185375