1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2020-7fd051b378

[FEDORA-2020-7fd051b378] Fedora 31: chromium

Severity High
Affected Packages 1
CVEs 9
Info Packages References Vulnerabilities

Update to 80.0.3987.149. Upstream says it fixes "13" security issues, but only
lists these CVEs: * CVE-2020-6422: Use after free in WebGL * CVE-2020-6424: Use
after free in media * CVE-2020-6425: Insufficient policy enforcement in
extensions. * CVE-2020-6426: Inappropriate implementation in V8 *
CVE-2020-6427: Use after free in audio * CVE-2020-6428: Use after free in audio
* CVE-2020-6429: Use after free in audio. * CVE-2019-20503: Out of bounds read
in usersctplib. * CVE-2020-6449: Use after free in audio

Package Affected Version
pkg:rpm/fedora/chromium?distro=fedora-31 < 80.0.3987.149.1.fc31
ID
FEDORA-2020-7fd051b378
Severity
high
Severity from
CVE-2020-6422
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2020-7fd051b378
Published
2020-03-24T01:49:34
(4 years ago)
Modified
2020-03-24T01:49:34
(4 years ago)
Rights
Copyright 2020 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1815243 Bug #1815243 - CVE-2020-6426 chromium-browser: Inappropriate implementation in V8 https://bugzilla.redhat.com/show_bug.cgi?id=1815243
Bugzilla 1815259 Bug #1815259 - CVE-2020-6422 chromium-browser: Use after free in WebGL https://bugzilla.redhat.com/show_bug.cgi?id=1815259
Bugzilla 1815241 Bug #1815241 - CVE-2020-6424 chromium-browser: Use after free in media https://bugzilla.redhat.com/show_bug.cgi?id=1815241
Bugzilla 1815247 Bug #1815247 - CVE-2020-6429 chromium-browser: Use after free in audio https://bugzilla.redhat.com/show_bug.cgi?id=1815247
Bugzilla 1815248 Bug #1815248 - CVE-2020-6449 chromium-browser: Use after free in audio https://bugzilla.redhat.com/show_bug.cgi?id=1815248
Bugzilla 1815244 Bug #1815244 - CVE-2020-6427 chromium-browser: Use after free in audio https://bugzilla.redhat.com/show_bug.cgi?id=1815244
Bugzilla 1815245 Bug #1815245 - CVE-2020-6428 chromium-browser: Use after free in audio https://bugzilla.redhat.com/show_bug.cgi?id=1815245
Bugzilla 1815242 Bug #1815242 - CVE-2020-6425 chromium-browser: Insufficient policy enforcement in extensions https://bugzilla.redhat.com/show_bug.cgi?id=1815242
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/chromium?distro=fedora-31 fedora chromium < 80.0.3987.149.1.fc31 fedora-31
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date