Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4858.NASL
HistoryFeb 22, 2021 - 12:00 a.m.

Debian DSA-4858-1 : chromium - security update

2021-02-2200:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18

9.9 High

AI Score

Confidence

High

JSON

Several vulnerabilities have been discovered in the chromium web browser.

  • CVE-2021-21148 Mattias Buelens discovered a buffer overflow issue in the v8 JavaScript library.

  • CVE-2021-21149 Ryoya Tsukasaki discovered a stack overflow issue in the Data Transfer implementation.

  • CVE-2021-21150 Woojin Oh discovered a use-after-free issue in the file downloader.

  • CVE-2021-21151 Khalil Zhani discovered a use-after-free issue in the payments system.

  • CVE-2021-21152 A buffer overflow was discovered in media handling.

  • CVE-2021-21153 Jan Ruge discovered a stack overflow issue in the GPU process.

  • CVE-2021-21154 Abdulrahman Alqabandi discovered a buffer overflow issue in the Tab Strip implementation.

  • CVE-2021-21155 Khalil Zhani discovered a buffer overflow issue in the Tab Strip implementation.

  • CVE-2021-21156 Sergei Glazunov discovered a buffer overflow issue in the v8 JavaScript library.

  • CVE-2021-21157 A use-after-free issue was discovered in the Web Sockets implementation.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4858. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(146757);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/19");

  script_cve_id(
    "CVE-2021-21148",
    "CVE-2021-21149",
    "CVE-2021-21150",
    "CVE-2021-21151",
    "CVE-2021-21152",
    "CVE-2021-21153",
    "CVE-2021-21154",
    "CVE-2021-21155",
    "CVE-2021-21156",
    "CVE-2021-21157"
  );
  script_xref(name:"DSA", value:"4858");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2021/11/17");
  script_xref(name:"CEA-ID", value:"CEA-2021-0007");

  script_name(english:"Debian DSA-4858-1 : chromium - security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security-related update.");
  script_set_attribute(attribute:"description", value:
"Several vulnerabilities have been discovered in the chromium web
browser.

  - CVE-2021-21148
    Mattias Buelens discovered a buffer overflow issue in
    the v8 JavaScript library.

  - CVE-2021-21149
    Ryoya Tsukasaki discovered a stack overflow issue in the
    Data Transfer implementation.

  - CVE-2021-21150
    Woojin Oh discovered a use-after-free issue in the file
    downloader.

  - CVE-2021-21151
    Khalil Zhani discovered a use-after-free issue in the
    payments system.

  - CVE-2021-21152
    A buffer overflow was discovered in media handling.

  - CVE-2021-21153
    Jan Ruge discovered a stack overflow issue in the GPU
    process.

  - CVE-2021-21154
    Abdulrahman Alqabandi discovered a buffer overflow issue
    in the Tab Strip implementation.

  - CVE-2021-21155
    Khalil Zhani discovered a buffer overflow issue in the
    Tab Strip implementation.

  - CVE-2021-21156
    Sergei Glazunov discovered a buffer overflow issue in
    the v8 JavaScript library.

  - CVE-2021-21157
    A use-after-free issue was discovered in the Web Sockets
    implementation.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21148");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21149");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21150");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21151");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21152");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21153");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21154");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21155");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21156");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2021-21157");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/chromium");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/chromium");
  script_set_attribute(attribute:"see_also", value:"https://www.debian.org/security/2021/dsa-4858");
  script_set_attribute(attribute:"solution", value:
"Upgrade the chromium packages.

For the stable distribution (buster), these problems have been fixed
in version 88.0.4324.182-1~deb10u1.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-21157");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2021-21155");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/02/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/02/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/02/22");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:chromium");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"10.0", prefix:"chromium", reference:"88.0.4324.182-1~deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"chromium-common", reference:"88.0.4324.182-1~deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"chromium-driver", reference:"88.0.4324.182-1~deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"chromium-l10n", reference:"88.0.4324.182-1~deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"chromium-sandbox", reference:"88.0.4324.182-1~deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"chromium-shell", reference:"88.0.4324.182-1~deb10u1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxchromiump-cpe:/a:debian:debian_linux:chromium
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0

References

Related

nessus 17
chrome 2
suse 8
osv 2
debian 1
kaspersky 6
freebsd 2
fedora 4
archlinux 3
veracode 10
prion 10
cve 10
ubuntucve 10
mscve 10
debiancve 10
alpinelinux 7
checkpoint_advisories 1
redhatcve 1
attackerkb 2
malwarebytes 2
cisa_kev 1
mageia 1
thn 11
threatpost 4
krebs 1
gentoo 1
securelist 1
rapid7blog 1
googleprojectzero 1
qualysblog 2
nessus
nessus
openSUSE Security Update : opera (openSUSE-2021-413)
2021-04-20 00:00:00
Google Chrome < 88.0.4324.182 Multiple Vulnerabilities
2021-02-16 00:00:00
Google Chrome < 88.0.4324.182 Multiple Vulnerabilities
2021-02-16 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-02-16 00:00:00
Stable Channel Update for Desktop
2021-02-04 00:00:00
suse
suse
Security update for opera (important)
2021-03-16 00:00:00
Security update for opera (important)
2021-02-15 00:00:00
Security update for chromium (important)
2021-02-11 00:00:00
osv
osv
chromium - security update
2021-02-19 00:00:00
CVE-2021-21148
2021-02-09 16:15:12
debian
debian
[SECURITY] [DSA 4858-1] chromium security update
2021-02-20 02:29:52
kaspersky
kaspersky
KLA12180 Multiple vulnerabilities in Opera
2021-03-04 00:00:00
KLA12093 Multiple vulnerabilities in Microsoft Browser
2021-02-17 00:00:00
KLA12089 Multiple vulnerabilities in Google Chrome
2021-02-16 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2021-02-16 00:00:00
chromium -- heap buffer overflow in V8
2021-02-04 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: chromium-88.0.4324.182-1.fc33
2021-02-28 17:27:09
[SECURITY] Fedora 32 Update: chromium-89.0.4389.82-1.fc32
2021-03-20 01:15:37
[SECURITY] Fedora 33 Update: chromium-88.0.4324.150-1.fc33
2021-02-10 01:20:58
archlinux
archlinux
[ASA-202103-8] opera: arbitrary code execution
2021-03-13 00:00:00
[ASA-202102-6] chromium: multiple issues
2021-02-06 00:00:00
[ASA-202102-4] vivaldi: multiple issues
2021-02-06 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2021-02-19 01:24:36
Remote Code Execution (RCE)
2021-02-19 01:24:44
Denial Of Service (DoS)
2021-02-19 01:24:40
prion
prion
Design/Logic Flaw
2021-02-22 22:15:00
Heap overflow
2021-02-22 22:15:00
Heap overflow
2021-02-22 22:15:00
cve
cve
CVE-2021-21155
2021-02-22 22:15:00
CVE-2021-21156
2021-02-22 22:15:00
CVE-2021-21152
2021-02-22 22:15:00
ubuntucve
ubuntucve
CVE-2021-21153
2021-02-22 00:00:00
CVE-2021-21150
2021-02-22 00:00:00
CVE-2021-21156
2021-02-22 00:00:00
mscve
mscve
Chromium CVE-2021-21157: Use after free in Web Sockets
2021-02-17 23:48:18
Chromium CVE-2021-21155: Heap buffer overflow in Tab Strip
2021-02-17 23:44:12
Chromium: CVE-2021-21150 Use after free in Downloads
2021-02-17 23:31:00
debiancve
debiancve
CVE-2021-21152
2021-02-22 22:15:00
CVE-2021-21156
2021-02-22 22:15:00
CVE-2021-21150
2021-02-22 22:15:00
alpinelinux
alpinelinux
CVE-2021-21156
2021-02-22 22:15:00
CVE-2021-21157
2021-02-22 22:15:00
CVE-2021-21153
2021-02-22 22:15:00
checkpoint_advisories
checkpoint_advisories
Google Chrome Buffer Overflow (CVE-2021-21153)
2021-05-31 00:00:00
redhatcve
redhatcve
CVE-2021-21152
2022-05-20 23:00:17
attackerkb
attackerkb
CVE-2021-21148
2021-02-09 00:00:00
CVE-2021-21193
2021-03-16 00:00:00
malwarebytes
malwarebytes
Update now! Chrome patches zero-day that was exploited in the wild
2021-02-05 12:14:04
Update now! Google Chrome fixes two in-the-wild zero-days
2021-09-14 16:28:47
cisa_kev
cisa_kev
Google Chromium V8 Heap Buffer Overflow Vulnerability
2021-11-03 00:00:00
mageia
mageia
Updated qtwebengine5 packages fix security vulnerabilities
2021-08-15 11:38:04
thn
thn
New Chrome Browser 0-day Under Active Attackโ€”Update Immediately!
2021-02-05 07:40:00
New Chrome 0-day Bug Under Active Attacks โ€“ Update Your Browser ASAP!
2021-03-03 06:03:00
Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild
2021-03-13 03:16:00
threatpost
threatpost
Google Chrome Zero-Day Afflicts Windows, Mac Users
2021-02-05 15:47:55
Google Chrome Bug Actively Exploited as Zero-Day
2022-03-30 16:14:30
Pair of Google Chrome Zero-Day Bugs Actively Exploited
2021-09-14 15:03:41
krebs
krebs
Microsoft Patch Tuesday, February 2021 Edition
2021-02-09 22:37:19
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2021-04-30 00:00:00
securelist
securelist
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
rapid7blog
rapid7blog
Patch Tuesday - February 2021
2021-02-09 23:51:27
googleprojectzero
googleprojectzero
The More You Know, The More You Know You Donโ€™t Know
2022-04-19 00:00:00
qualysblog
qualysblog
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00

9.9 High

AI Score

Confidence

High

JSON
Related for DEBIAN_DSA-4858.NASL
nessus17chrome2suse8osv2debian1kaspersky6freebsd2fedora4archlinux3veracode10prion10cve10ubuntucve10mscve10debiancve10alpinelinux7checkpoint_advisories1redhatcve1attackerkb2malwarebytes2cisa_kev1mageia1thn11threatpost4krebs1gentoo1securelist1rapid7blog1googleprojectzero1qualysblog2