Insufficient policy enforcement in developer tools in Google Chrome prior to 87.0.4280.66 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from the user’s disk via a crafted Chrome Extension.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | chromium | < 87.0.4280.88-0.1 | chromium_87.0.4280.88-0.1_all.deb |
Debian | 11 | all | chromium | < 87.0.4280.88-0.1 | chromium_87.0.4280.88-0.1_all.deb |
Debian | 10 | all | chromium | < 87.0.4280.88-0.4~deb10u1 | chromium_87.0.4280.88-0.4~deb10u1_all.deb |
Debian | 999 | all | chromium | < 87.0.4280.88-0.1 | chromium_87.0.4280.88-0.1_all.deb |
Debian | 13 | all | chromium | < 87.0.4280.88-0.1 | chromium_87.0.4280.88-0.1_all.deb |