Описание
Security update for chromium
This update for chromium fixes the following issues:
Chromium 96.0.4664.110 (boo#1193713):
- CVE-2021-4098: Insufficient data validation in Mojo
- CVE-2021-4099: Use after free in Swiftshader
- CVE-2021-4100: Object lifecycle issue in ANGLE
- CVE-2021-4101: Heap buffer overflow in Swiftshader
- CVE-2021-4102: Use after free in V8
Lord of the Browsers: The Two Compilers:
- Go back to GCC
- GCC: LTO removes needed assembly symbols
- Clang: issues with libstdc++
Chromium 96.0.4664.93 (boo#1193519):
- CVE-2021-4052: Use after free in web apps
- CVE-2021-4053: Use after free in UI
- CVE-2021-4079: Out of bounds write in WebRTC
- CVE-2021-4054: Incorrect security UI in autofill
- CVE-2021-4078: Type confusion in V8
- CVE-2021-4055: Heap buffer overflow in extensions
- CVE-2021-4056: Type Confusion in loader
- CVE-2021-4057: Use after free in file API
- CVE-2021-4058: Heap buffer overflow in ANGLE
- CVE-2021-4059: Insufficient data validation in loader
- CVE-2021-4061: Type Confusion in V8
- CVE-2021-4062: Heap buffer overflow in BFCache
- CVE-2021-4063: Use after free in developer tools
- CVE-2021-4064: Use after free in screen capture
- CVE-2021-4065: Use after free in autofill
- CVE-2021-4066: Integer underflow in ANGLE
- CVE-2021-4067: Use after free in window manager
- CVE-2021-4068: Insufficient validation of untrusted input in new tab page
Chromium 96.0.4664.45 (boo#1192734):
- CVE-2021-38007: Type Confusion in V8
- CVE-2021-38008: Use after free in media
- CVE-2021-38009: Inappropriate implementation in cache
- CVE-2021-38006: Use after free in storage foundation
- CVE-2021-38005: Use after free in loader
- CVE-2021-38010: Inappropriate implementation in service workers
- CVE-2021-38011: Use after free in storage foundation
- CVE-2021-38012: Type Confusion in V8
- CVE-2021-38013: Heap buffer overflow in fingerprint recognition
- CVE-2021-38014: Out of bounds write in Swiftshader
- CVE-2021-38015: Inappropriate implementation in input
- CVE-2021-38016: Insufficient policy enforcement in background fetch
- CVE-2021-38017: Insufficient policy enforcement in iframe sandbox
- CVE-2021-38018: Inappropriate implementation in navigation
- CVE-2021-38019: Insufficient policy enforcement in CORS
- CVE-2021-38020: Insufficient policy enforcement in contacts picker
- CVE-2021-38021: Inappropriate implementation in referrer
- CVE-2021-38022: Inappropriate implementation in WebAuthentication
Список пакетов
openSUSE Leap 15.2
Ссылки
- E-Mail link for openSUSE-SU-2021:1632-1
- SUSE Security Ratings
- SUSE Bug 1192310
- SUSE Bug 1192734
- SUSE Bug 1193519
- SUSE Bug 1193713
- SUSE CVE CVE-2021-38005 page
- SUSE CVE CVE-2021-38006 page
- SUSE CVE CVE-2021-38007 page
- SUSE CVE CVE-2021-38008 page
- SUSE CVE CVE-2021-38009 page
- SUSE CVE CVE-2021-38010 page
- SUSE CVE CVE-2021-38011 page
- SUSE CVE CVE-2021-38012 page
- SUSE CVE CVE-2021-38013 page
- SUSE CVE CVE-2021-38014 page
- SUSE CVE CVE-2021-38015 page
- SUSE CVE CVE-2021-38016 page
- SUSE CVE CVE-2021-38017 page
- SUSE CVE CVE-2021-38018 page
Описание
Use after free in loader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38005
- SUSE Bug 1192734
Описание
Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38006
- SUSE Bug 1192734
Описание
Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38007
- SUSE Bug 1192734
Описание
Use after free in media in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38008
- SUSE Bug 1192734
Описание
Inappropriate implementation in cache in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38009
- SUSE Bug 1192734
Описание
Inappropriate implementation in service workers in Google Chrome prior to 96.0.4664.45 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38010
- SUSE Bug 1192734
Описание
Use after free in storage foundation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38011
- SUSE Bug 1192734
Описание
Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38012
- SUSE Bug 1192734
Описание
Heap buffer overflow in fingerprint recognition in Google Chrome on ChromeOS prior to 96.0.4664.45 allowed a remote attacker who had compromised a WebUI renderer process to potentially perform a sandbox escape via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38013
- SUSE Bug 1192734
Описание
Out of bounds write in Swiftshader in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38014
- SUSE Bug 1192734
Описание
Inappropriate implementation in input in Google Chrome prior to 96.0.4664.45 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
Затронутые продукты
Ссылки
- CVE-2021-38015
- SUSE Bug 1192734
Описание
Insufficient policy enforcement in background fetch in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to bypass same origin policy via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38016
- SUSE Bug 1192734
Описание
Insufficient policy enforcement in iframe sandbox in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38017
- SUSE Bug 1192734
Описание
Inappropriate implementation in navigation in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38018
- SUSE Bug 1192734
Описание
Insufficient policy enforcement in CORS in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38019
- SUSE Bug 1192734
Описание
Insufficient policy enforcement in contacts picker in Google Chrome on Android prior to 96.0.4664.45 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38020
- SUSE Bug 1192734
Описание
Inappropriate implementation in referrer in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38021
- SUSE Bug 1192734
Описание
Inappropriate implementation in WebAuthentication in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-38022
- SUSE Bug 1192734
Описание
Use after free in web apps in Google Chrome prior to 96.0.4664.93 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
Затронутые продукты
Ссылки
- CVE-2021-4052
- SUSE Bug 1193519
Описание
Use after free in UI in Google Chrome on Linux prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4053
- SUSE Bug 1193519
Описание
Incorrect security UI in autofill in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4054
- SUSE Bug 1193519
Описание
Heap buffer overflow in extensions in Google Chrome prior to 96.0.4664.93 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.
Затронутые продукты
Ссылки
- CVE-2021-4055
- SUSE Bug 1193519
Описание
Type confusion in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4056
- SUSE Bug 1193519
Описание
Use after free in file API in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4057
- SUSE Bug 1193519
Описание
Heap buffer overflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4058
- SUSE Bug 1193519
Описание
Insufficient data validation in loader in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4059
- SUSE Bug 1193519
Описание
Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4061
- SUSE Bug 1193519
Описание
Heap buffer overflow in BFCache in Google Chrome prior to 96.0.4664.93 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4062
- SUSE Bug 1193519
Описание
Use after free in developer tools in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4063
- SUSE Bug 1193519
Описание
Use after free in screen capture in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4064
- SUSE Bug 1193519
Описание
Use after free in autofill in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4065
- SUSE Bug 1193519
Описание
Integer underflow in ANGLE in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4066
- SUSE Bug 1193519
Описание
Use after free in window manager in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4067
- SUSE Bug 1193519
Описание
Insufficient data validation in new tab page in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4068
- SUSE Bug 1193519
Описание
Type confusion in V8 in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4078
- SUSE Bug 1193519
Описание
Out of bounds write in WebRTC in Google Chrome prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via crafted WebRTC packets.
Затронутые продукты
Ссылки
- CVE-2021-4079
- SUSE Bug 1193519
Описание
Insufficient data validation in Mojo in Google Chrome prior to 96.0.4664.110 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4098
- SUSE Bug 1193713
Описание
Use after free in Swiftshader in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4099
- SUSE Bug 1193713
Описание
Object lifecycle issue in ANGLE in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4100
- SUSE Bug 1193713
Описание
Heap buffer overflow in Swiftshader in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4101
- SUSE Bug 1193713
Описание
Use after free in V8 in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Затронутые продукты
Ссылки
- CVE-2021-4102
- SUSE Bug 1193713