exploitDog

openSUSE-SU-2021:1095-1

Опубликовано: 05 авг. 2021

Источник: suse-cvrf

Описание

Security update for opera

This update for opera fixes the following issues:

Update to version 77.0.4054.277

DNA-94291 Video conference popout doesnt remember its size after resizing
DNA-94399 Incorrect icon for wp.pl in address bar dropdown - DNA-94462 Low quality of default wallpaper on windows
The update to chromium 91.0.4472.164 fixes following issues: CVE-2021-30541, CVE-2021-30560, CVE-2021-30561, CVE-2021-30562, CVE-2021-30563, CVE-2021-30564

Список пакетов

openSUSE Leap 15.3 NonFree

opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Y5MSUD6KYHZ34U3ICGDUX4DAHAE4L7BB/
E-Mail link for openSUSE-SU-2021:1095-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://www.suse.com/security/cve/CVE-2021-30541/
SUSE CVE CVE-2021-30541 page
https://www.suse.com/security/cve/CVE-2021-30560/
SUSE CVE CVE-2021-30560 page
https://www.suse.com/security/cve/CVE-2021-30561/
SUSE CVE CVE-2021-30561 page
https://www.suse.com/security/cve/CVE-2021-30562/
SUSE CVE CVE-2021-30562 page
https://www.suse.com/security/cve/CVE-2021-30563/
SUSE CVE CVE-2021-30563 page
https://www.suse.com/security/cve/CVE-2021-30564/
SUSE CVE CVE-2021-30564 page

Описание

Use after free in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30541.html
CVE-2021-30541
https://bugzilla.suse.com/1188373
SUSE Bug 1188373

Описание

Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30560.html
CVE-2021-30560
https://bugzilla.suse.com/1188373
SUSE Bug 1188373
https://bugzilla.suse.com/1208574
SUSE Bug 1208574
https://bugzilla.suse.com/1211500
SUSE Bug 1211500
https://bugzilla.suse.com/1211501
SUSE Bug 1211501
https://bugzilla.suse.com/1211544
SUSE Bug 1211544

Описание

Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30561.html
CVE-2021-30561
https://bugzilla.suse.com/1188373
SUSE Bug 1188373

Описание

Use after free in WebSerial in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30562.html
CVE-2021-30562
https://bugzilla.suse.com/1188373
SUSE Bug 1188373

Описание

Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30563.html
CVE-2021-30563
https://bugzilla.suse.com/1188373
SUSE Bug 1188373

Описание

Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Затронутые продукты

openSUSE Leap 15.3 NonFree:opera-77.0.4054.277-lp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-30564.html
CVE-2021-30564
https://bugzilla.suse.com/1188373
SUSE Bug 1188373