openSUSE-SU-2021:0041-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:0041-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/openSUSE-SU-2021:0041-1
- Related
- Published
- 2021-01-10T08:53:35Z
- Modified
- 2021-01-10T08:53:35Z
- Summary
- Security update for chromium
- Details
-
This update for chromium fixes the following issues:
Update to 87.0.4280.141 (boo#1180645)
- CVE-2021-21106: Use after free in autofill
- CVE-2021-21107: Use after free in drag and drop
- CVE-2021-21108: Use after free in media
- CVE-2021-21109: Use after free in payments
- CVE-2021-21110: Use after free in safe browsing
- CVE-2021-21111: Insufficient policy enforcement in WebUI
- CVE-2021-21112: Use after free in Blink
- CVE-2021-21113: Heap buffer overflow in Skia
- CVE-2020-16043: Insufficient data validation in networking
- CVE-2021-21114: Use after free in audio
- CVE-2020-15995: Out of bounds write in V8
- CVE-2021-21115: Use after free in safe browsing
- CVE-2021-21116: Heap buffer overflow in audio
Use main URLs instead of redirects in master preferences
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GR5AM5XB3SLX6EFTV6X7ST2RBPHRH4HY/
- https://bugzilla.suse.com/1180645
- https://www.suse.com/security/cve/CVE-2020-15995
- https://www.suse.com/security/cve/CVE-2020-16043
- https://www.suse.com/security/cve/CVE-2021-21106
- https://www.suse.com/security/cve/CVE-2021-21107
- https://www.suse.com/security/cve/CVE-2021-21108
- https://www.suse.com/security/cve/CVE-2021-21109
- https://www.suse.com/security/cve/CVE-2021-21110
- https://www.suse.com/security/cve/CVE-2021-21111
- https://www.suse.com/security/cve/CVE-2021-21112
- https://www.suse.com/security/cve/CVE-2021-21113
- https://www.suse.com/security/cve/CVE-2021-21114
- https://www.suse.com/security/cve/CVE-2021-21115
- https://www.suse.com/security/cve/CVE-2021-21116