RHSA-2020:4235-01 -- Redhat chromium-browser, chromium-browser-debuginfoID: oval:org.secpod.oval:def:505618 | Date: (C)2020-12-30 (M)2024-02-19 |
Class: PATCH | Family: unix |
Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 86.0.4240.75. Security Fix: * chromium-browser: Use after free in payments * chromium-browser: Use after free in Blink * chromium-browser: Use after free in WebRTC * chromium-browser: Use after free in NFC * chromium-browser: Use after free in printing * chromium-browser: Use after free in audio * chromium-browser: Use after free in autofill * chromium-browser: Use after free in password manager * chromium-browser: Inappropriate implementation in networking * chromium-browser: Insufficient policy enforcement in extensions * chromium-browser: Integer overflow in Blink * chromium-browser: Integer overflow in SwiftShader * chromium-browser: Use after free in WebXR * chromium-browser: Insufficient data validation in dialogs * chromium-browser: Insufficient data validation in navigation * chromium-browser: Inappropriate implementation in V8 * chromium-browser: Insufficient policy enforcement in Intents * chromium-browser: Out of bounds read in audio * chromium-browser: Side-channel information leakage in cache * chromium-browser: Insufficient data validation in webUI * chromium-browser: Insufficient policy enforcement in Omnibox * chromium-browser: Inappropriate implementation in Blink * chromium-browser: Integer overflow in media * chromium-browser: Use after free in WebRTC * chromium-browser: Insufficient policy enforcement in networking * chromium-browser: Insufficient policy enforcement in downloads * chromium-browser: Uninitialized use in PDFium For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 6 |
Product: |
chromium-browser |
chromium-browser-debuginfo |