openSUSE-SU-2020:2010-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:2010-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2020:2010-1
- Related
- Published
- 2020-11-24T23:27:03Z
- Modified
- 2020-11-24T23:27:03Z
- Summary
- Security update for chromium
- Details
-
This update for chromium fixes the following issues:
- Update to 87.0.4280.66 (boo#1178923)
- Wayland support by default
- CVE-2020-16018: Use after free in payments.
- CVE-2020-16019: Inappropriate implementation in filesystem.
- CVE-2020-16020: Inappropriate implementation in cryptohome.
- CVE-2020-16021: Race in ImageBurner.
- CVE-2020-16022: Insufficient policy enforcement in networking.
- CVE-2020-16015: Insufficient data validation in WASM. R
- CVE-2020-16014: Use after free in PPAPI.
- CVE-2020-16023: Use after free in WebCodecs.
- CVE-2020-16024: Heap buffer overflow in UI.
- CVE-2020-16025: Heap buffer overflow in clipboard.
- CVE-2020-16026: Use after free in WebRTC.
- CVE-2020-16027: Insufficient policy enforcement in developer tools. R
- CVE-2020-16028: Heap buffer overflow in WebRTC.
- CVE-2020-16029: Inappropriate implementation in PDFium.
- CVE-2020-16030: Insufficient data validation in Blink.
- CVE-2019-8075: Insufficient data validation in Flash.
- CVE-2020-16031: Incorrect security UI in tab preview.
- CVE-2020-16032: Incorrect security UI in sharing.
- CVE-2020-16033: Incorrect security UI in WebUSB.
- CVE-2020-16034: Inappropriate implementation in WebRTC.
- CVE-2020-16035: Insufficient data validation in cros-disks.
- CVE-2020-16012: Side-channel information leakage in graphics.
- CVE-2020-16036: Inappropriate implementation in cookies.
- Update to 87.0.4280.66 (boo#1178923)
- References
-
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QY4HVSGBXI6UWJK3O7NRFLCCCLNP2X5N/
- https://bugzilla.suse.com/1178923
- https://www.suse.com/security/cve/CVE-2019-8075
- https://www.suse.com/security/cve/CVE-2020-16012
- https://www.suse.com/security/cve/CVE-2020-16014
- https://www.suse.com/security/cve/CVE-2020-16015
- https://www.suse.com/security/cve/CVE-2020-16018
- https://www.suse.com/security/cve/CVE-2020-16019
- https://www.suse.com/security/cve/CVE-2020-16020
- https://www.suse.com/security/cve/CVE-2020-16021
- https://www.suse.com/security/cve/CVE-2020-16022
- https://www.suse.com/security/cve/CVE-2020-16023
- https://www.suse.com/security/cve/CVE-2020-16024
- https://www.suse.com/security/cve/CVE-2020-16025
- https://www.suse.com/security/cve/CVE-2020-16026
- https://www.suse.com/security/cve/CVE-2020-16027
- https://www.suse.com/security/cve/CVE-2020-16028
- https://www.suse.com/security/cve/CVE-2020-16029
- https://www.suse.com/security/cve/CVE-2020-16030
- https://www.suse.com/security/cve/CVE-2020-16031
- https://www.suse.com/security/cve/CVE-2020-16032
- https://www.suse.com/security/cve/CVE-2020-16033
- https://www.suse.com/security/cve/CVE-2020-16034
- https://www.suse.com/security/cve/CVE-2020-16035
- https://www.suse.com/security/cve/CVE-2020-16036