[FEDORA-2020-bf684961d9] Fedora 32: chromium
Severity
Critical
Affected Packages
1
CVEs
26
Just enough time for one more update. Chromium 84. Fixes CVE-2020-6510
CVE-2020-6511 CVE-2020-6512 CVE-2020-6513 CVE-2020-6514 CVE-2020-6515
CVE-2020-6516 CVE-2020-6517 CVE-2020-6518 CVE-2020-6519 CVE-2020-6520
CVE-2020-6521 CVE-2020-6522 CVE-2020-6523 CVE-2020-6524 CVE-2020-6525
CVE-2020-6526 CVE-2020-6527 CVE-2020-6528 CVE-2020-6529 CVE-2020-6530
CVE-2020-6531 CVE-2020-6533 CVE-2020-6534 CVE-2020-6535 CVE-2020-6536
| Package | Affected Version |
|---|---|
 pkg:rpm/fedora/chromium?distro=fedora-32
|
< 84.0.4147.89.1.fc32 |
- ID
- FEDORA-2020-bf684961d9
- Severity
- critical
- Severity from
- CVE-2020-6522
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2020-bf684961d9
- Published
-
2020-07-30T17:54:07
(4 years ago) - Modified
-
2020-07-30T17:54:07
(4 years ago) - Rights
- Copyright 2020 Red Hat, Inc.
- Other Advisories
-
-
ALAS2-2020-1487
-
ALPINE:CVE-2020-6514
-
DSA-4736-1
-
DSA-4740-1
-
DSA-4824-1
-
ELSA-2020-3233
-
ELSA-2020-3241
-
ELSA-2020-3253
-
ELSA-2020-3341
-
ELSA-2020-3344
-
ELSA-2020-3345
-
FEDORA-2020-84d87cbd50
-
FREEBSD:870D59B0-C6C4-11EA-8015-E09467587C17
-
GLSA-202007-08
-
GLSA-202007-64
-
GLSA-202101-30
-
MFSA-2020-30
-
MFSA-2020-31
-
MFSA-2020-32
-
MFSA-2020-33
-
MFSA-2020-35
-
openSUSE-SU-2020:1020-1
-
openSUSE-SU-2020:1021-1
-
openSUSE-SU-2020:1048-1
-
openSUSE-SU-2020:1061-1
-
openSUSE-SU-2020:1147-1
-
openSUSE-SU-2020:1148-1
-
openSUSE-SU-2020:1155-1
-
openSUSE-SU-2020:1172-1
-
openSUSE-SU-2020:1179-1
-
openSUSE-SU-2020:1189-1
-
openSUSE-SU-2020:1205-1
-
RHSA-2020:3233
-
RHSA-2020:3241
-
RHSA-2020:3253
-
RHSA-2020:3341
-
RHSA-2020:3344
-
RHSA-2020:3345
-
RHSA-2020:3377
-
SSA:2020-213-01
-
SUSE-SU-2020:2100-1
-
SUSE-SU-2020:2118-1
-
SUSE-SU-2020:2147-1
-
SUSE-SU-2020:2179-1
-
USN-4443-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1857341 | Bug #1857341 - CVE-2020-6535 chromium-browser: Insufficient data validation in WebUI |
|
| Bugzilla | 1857331 | Bug #1857331 - CVE-2020-6525 chromium-browser: Heap buffer overflow in Skia |
|
| Bugzilla | 1857340 | Bug #1857340 - CVE-2020-6534 chromium-browser: Heap buffer overflow in WebRTC |
|
| Bugzilla | 1857329 | Bug #1857329 - CVE-2020-6523 chromium-browser: Out of bounds write in Skia |
|
| Bugzilla | 1857324 | Bug #1857324 - CVE-2020-6516 chromium-browser: Policy bypass in CORS |
|
| Bugzilla | 1857321 | Bug #1857321 - CVE-2020-6512 chromium-browser: Type Confusion in V8 |
|
| Bugzilla | 1857342 | Bug #1857342 - CVE-2020-6536 chromium-browser: Incorrect security UI in PWAs |
|
| Bugzilla | 1857320 | Bug #1857320 - CVE-2020-6511 chromium-browser: Side-channel information leakage in content security policy |
|
| Bugzilla | 1857334 | Bug #1857334 - CVE-2020-6528 chromium-browser: Incorrect security UI in basic auth |
|
| Bugzilla | 1857339 | Bug #1857339 - CVE-2020-6533 chromium-browser: Type Confusion in V8 |
|
| Bugzilla | 1857322 | Bug #1857322 - CVE-2020-6513 chromium-browser: Heap buffer overflow in PDFium |
|
| Bugzilla | 1857337 | Bug #1857337 - CVE-2020-6530 chromium-browser: Out of bounds memory access in developer tools |
|
| Bugzilla | 1857338 | Bug #1857338 - CVE-2020-6531 chromium-browser: Side-channel information leakage in scroll to text |
|
| Bugzilla | 1857330 | Bug #1857330 - CVE-2020-6524 chromium-browser: Heap buffer overflow in WebAudio |
|
| Bugzilla | 1857333 | Bug #1857333 - CVE-2020-6527 chromium-browser: Insufficient policy enforcement in CSP |
|
| Bugzilla | 1857326 | Bug #1857326 - CVE-2020-6519 chromium-browser: Policy bypass in CSP |
|
| Bugzilla | 1857328 | Bug #1857328 - CVE-2020-6521 chromium-browser: Side-channel information leakage in autofill |
|
| Bugzilla | 1857336 | Bug #1857336 - CVE-2020-6529 chromium-browser: Inappropriate implementation in WebRTC |
|
| Bugzilla | 1857327 | Bug #1857327 - CVE-2020-6520 chromium-browser: Heap buffer overflow in Skia |
|
| Bugzilla | 1857323 | Bug #1857323 - CVE-2020-6515 chromium-browser: Use after free in tab strip |
|
| Bugzilla | 1857325 | Bug #1857325 - CVE-2020-6518 chromium-browser: Use after free in developer tools |
|
| Bugzilla | 1857332 | Bug #1857332 - CVE-2020-6526 chromium-browser: Inappropriate implementation in iframe sandbox |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/fedora/chromium?distro=fedora-32 | fedora |
chromium
|
< 84.0.4147.89.1.fc32 | fedora-32 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |