[FEDORA-2020-7fd051b378] Fedora 31: chromium
Severity
High
Affected Packages
1
CVEs
9
Update to 80.0.3987.149. Upstream says it fixes "13" security issues, but only
lists these CVEs: * CVE-2020-6422: Use after free in WebGL * CVE-2020-6424: Use
after free in media * CVE-2020-6425: Insufficient policy enforcement in
extensions. * CVE-2020-6426: Inappropriate implementation in V8 *
CVE-2020-6427: Use after free in audio * CVE-2020-6428: Use after free in audio
* CVE-2020-6429: Use after free in audio. * CVE-2019-20503: Out of bounds read
in usersctplib. * CVE-2020-6449: Use after free in audio
Package | Affected Version |
---|---|
pkg:rpm/fedora/chromium?distro=fedora-31 | < 80.0.3987.149.1.fc31 |
- ID
- FEDORA-2020-7fd051b378
- Severity
- high
- Severity from
- CVE-2020-6422
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2020-7fd051b378
- Published
-
2020-03-24T01:49:34
(4 years ago) - Modified
-
2020-03-24T01:49:34
(4 years ago) - Rights
- Copyright 2020 Red Hat, Inc.
- Other Advisories
-
- ALAS2-2020-1414
- ALPINE:CVE-2019-20503
- ALPINE:CVE-2020-6422
- ALPINE:CVE-2020-6424
- ALPINE:CVE-2020-6425
- ALPINE:CVE-2020-6426
- ALPINE:CVE-2020-6427
- ALPINE:CVE-2020-6428
- ALPINE:CVE-2020-6429
- ASA-202003-11
- ASA-202003-12
- ASA-202003-8
- DSA-4639-1
- DSA-4642-1
- DSA-4645-1
- ELSA-2020-0815
- ELSA-2020-0816
- ELSA-2020-0820
- ELSA-2020-0905
- ELSA-2020-0914
- ELSA-2020-0919
- FEDORA-2020-17149a4f3d
- FEDORA-2020-39e0b8bd14
- GLSA-202003-02
- GLSA-202003-10
- GLSA-202003-53
- MFSA-2020-08
- MFSA-2020-09
- MFSA-2020-10
- MS:CVE-2019-20503
- openSUSE-SU-2020:0340-1
- openSUSE-SU-2020:0365-1
- openSUSE-SU-2020:0366-1
- openSUSE-SU-2020:0389-1
- RHSA-2020:0815
- RHSA-2020:0816
- RHSA-2020:0820
- RHSA-2020:0905
- RHSA-2020:0914
- RHSA-2020:0919
- RHSA-2020:1270
- SSA:2020-070-01
- SSA:2020-073-01
- SUSE-SU-2020:0686-1
- SUSE-SU-2020:0717-1
- SUSE-SU-2020:0721-1
- USN-4299-1
- USN-4328-1
- USN-4335-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1815243 | Bug #1815243 - CVE-2020-6426 chromium-browser: Inappropriate implementation in V8 | https://bugzilla.redhat.com/show_bug.cgi?id=1815243 |
Bugzilla | 1815259 | Bug #1815259 - CVE-2020-6422 chromium-browser: Use after free in WebGL | https://bugzilla.redhat.com/show_bug.cgi?id=1815259 |
Bugzilla | 1815241 | Bug #1815241 - CVE-2020-6424 chromium-browser: Use after free in media | https://bugzilla.redhat.com/show_bug.cgi?id=1815241 |
Bugzilla | 1815247 | Bug #1815247 - CVE-2020-6429 chromium-browser: Use after free in audio | https://bugzilla.redhat.com/show_bug.cgi?id=1815247 |
Bugzilla | 1815248 | Bug #1815248 - CVE-2020-6449 chromium-browser: Use after free in audio | https://bugzilla.redhat.com/show_bug.cgi?id=1815248 |
Bugzilla | 1815244 | Bug #1815244 - CVE-2020-6427 chromium-browser: Use after free in audio | https://bugzilla.redhat.com/show_bug.cgi?id=1815244 |
Bugzilla | 1815245 | Bug #1815245 - CVE-2020-6428 chromium-browser: Use after free in audio | https://bugzilla.redhat.com/show_bug.cgi?id=1815245 |
Bugzilla | 1815242 | Bug #1815242 - CVE-2020-6425 chromium-browser: Insufficient policy enforcement in extensions | https://bugzilla.redhat.com/show_bug.cgi?id=1815242 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/chromium?distro=fedora-31 | fedora | chromium | < 80.0.3987.149.1.fc31 | fedora-31 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |