[FREEBSD:01FFD06A-36ED-11EB-B655-3065EC8FD3EC] chromium -- multiple vulnerabilities
Severity
High
Affected Packages
1
CVEs
6
Chrome Releases reports:
This release contains 8 security fixes, including:
[1142331] High CVE-2020-16037: Use after free in clipboard.
Reported by Ryoya Tsukasaki on 2020-10-26
[1138683] High CVE-2020-16038: Use after free in media.
Reported by Khalil Zhani on 2020-10-14
[1149177] High CVE-2020-16039: Use after free in extensions.
Reported by Anonymous on 2020-11-15
[1150649] High CVE-2020-16040: Insufficient data validation in
V8. Reported by Lucas Pinheiro, Microsoft Browser Vulnerability
Research on 2020-11-19
[1151865] Medium CVE-2020-16041: Out of bounds read in
networking. Reported by Sergei Glazunov and Mark Brand of Google
Project Zero on 2020-11-23
[1151890] Medium CVE-2020-16042: Uninitialized Use in V8.
Reported by André Bargull on 2020-11-2
Package | Affected Version |
---|---|
pkg:freebsd/chromium | < 87.0.4280.88 |
- ID
- FREEBSD:01FFD06A-36ED-11EB-B655-3065EC8FD3EC
- Severity
- high
- Severity from
- CVE-2020-16037
- URL
- http://vuxml.freebsd.org/freebsd/01ffd06a-36ed-11eb-b655-3065ec8fd3ec.html
- Published
-
2020-12-02T00:00:00
(3 years ago) - Modified
-
2020-12-05T00:00:00
(3 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
-
- ALAS2-2021-1586
- ALPINE:CVE-2020-16042
- ASA-202012-14
- ASA-202012-23
- ASA-202012-25
- DSA-4813-1
- DSA-4815-1
- DSA-4824-1
- ELSA-2020-5618
- ELSA-2020-5624
- FEDORA-2020-5b9c42f1b9
- FEDORA-2020-f43efd09e8
- GLSA-202012-05
- GLSA-202012-20
- MFSA-2020-54
- MFSA-2020-55
- MFSA-2020-56
- openSUSE-SU-2020:2181-1
- openSUSE-SU-2020:2213-1
- openSUSE-SU-2020:2216-1
- openSUSE-SU-2020:2229-1
- openSUSE-SU-2020:2317-1
- openSUSE-SU-2020:2318-1
- openSUSE-SU-2020:2324-1
- openSUSE-SU-2020:2325-1
- openSUSE-SU-2020:2359-1
- openSUSE-SU-2020:2360-1
- RHSA-2020:5561
- RHSA-2020:5562
- RHSA-2020:5618
- RHSA-2020:5624
- SUSE-SU-2020:3900-1
- SUSE-SU-2020:3901-1
- SUSE-SU-2020:3902-1
- SUSE-SU-2020:3903-1
- SUSE-SU-2020:3935-1
- USN-4671-1
- USN-4701-1
Source | # ID | Name | URL |
---|---|---|---|
FreeBSD VuXML | https://chromereleases.googleblog.com/2020/12/stable-channel-update-for-desktop.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:freebsd/chromium | chromium | < 87.0.4280.88 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |