Chromium: CVE-2021-38018 Inappropriate implementation in navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 25 security fixes, including: 1263620 High CVE-2021-38008: Use after free in media. Reported by Marcin Towalski of Cisco Talos on 2021-10-26 1260649 High CVE-2021-38009: Inappropriate implementation in cache. Reported by Luan Herrera @lbherrera on...

Content Spoofing

chrome is vulnerable to content spoofing. The vulnerability exists due to an Inappropriate implementation in WebApp Installer in Google Chrome...

Design/Logic Flaw

Inappropriate implementation in WebApp Installer in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially overlay and spoof the contents of the Omnibox URL bar via a crafted HTML page...

Design/Logic Flaw

Inappropriate implementation in Sandbox in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially bypass site isolation via Windows...

CVE-2021-37989

CVE-2021-37989 is an issue in the Blink component of Google Chrome prior to 95.0.4638.54 . The problem is an inappropriate implementation that allows a remote attacker to abuse the Content Security Policy via a crafted HTML page. Impact is described as potential policy abuse with craftable conten...

CVE-2021-37980

Inappropriate implementation in Sandbox in Google Chrome prior to 94.0.4606.81 allowed a remote attacker to potentially bypass site isolation via Windows...

FreeBSD : chromium -- multiple vulnerabilities (976d7bf9-38ea-11ec-b3b0-3065ec8fd3ec)

Chrome Releases reports : This release contains 8 security fixes, including : - 1259864 High CVE-2021-37997 : Use after free in Sign-In. Reported by Wei Yuan of MoyunSec VLab on 2021-10-14 - 1259587 High CVE-2021-37998 : Use after free in Garbage Collection. Reported by Cassidy Kim of Amber...

OPENSUSE-SU-2021:1396-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 95.0.4638.54 boo1191844: CVE-2021-37981: Heap buffer overflow in Skia CVE-2021-37982: Use after free in Incognito CVE-2021-37983: Use after free in Dev Tools CVE-2021-37984: Heap buffer overflow in PDFium CVE-2021-37985: Use after free...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 8 security fixes, including: 1259864 High CVE-2021-37997 : Use after free in Sign-In. Reported by Wei Yuan of MoyunSec VLab on 2021-10-14 1259587 High CVE-2021-37998 : Use after free in Garbage Collection. Reported by Cassidy Kim of Amber Security La...

openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1392-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1392-1 advisory. - : Heap buffer overflow in Skia. CVE-2021-37981 - : Use after free in Incognito. CVE-2021-37982 - : Use after free in Dev Tools...

OPENSUSE-SU-2021:1392-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 95.0.4638.54 boo1191844: CVE-2021-37981: Heap buffer overflow in Skia CVE-2021-37982: Use after free in Incognito CVE-2021-37983: Use after free in Dev Tools CVE-2021-37984: Heap buffer overflow in PDFium CVE-2021-37985: Use after free...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:1392-1 Rating: important References: 1191844 Cross-References: CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 19 security fixes, including: 1246631 High CVE-2021-37981: Heap buffer overflow in Skia. Reported by Yangkang @dnpushme of 360 ATA on 2021-09-04 1248661 High CVE-2021-37982: Use after free in Incognito. Reported by Weipeng Jiang @Krace from Codesafe...

Stable Channel Update for Desktop

The Chrome team is delighted to announce the promotion of Chrome 95 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 95.0.4638.54 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming...

OPENSUSE-SU-2021:1350-1 Security update for chromium

This update for chromium fixes the following issues: Chromium 94.0.4606.81 boo1191463: CVE-2021-37977: Use after free in Garbage Collection CVE-2021-37978: Heap buffer overflow in Blink CVE-2021-37979: Heap buffer overflow in WebRTC CVE-2021-37980: Inappropriate implementation in Sandbox Chromium...

Chromium: CVE-2021-37980 Inappropriate implementation in Sandbox

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

FreeBSD : chromium -- multiple vulnerabilities (7d3d94d3-2810-11ec-9c51-3065ec8fd3ec)

Chrome Releases reports : This release contains 4 security fixes, including : - 1252878 High CVE-2021-37977: Use after free in Garbage Collection. Reported by Anonymous on 2021-09-24 - 1236318 High CVE-2021-37978: Heap buffer overflow in Blink. Reported by Yangkang @dnpushme of 360 ATA on...

CVE-2021-37958

Inappropriate implementation in Navigation in Google Chrome on Windows prior to 94.0.4606.54 allowed a remote attacker to inject scripts or HTML into a privileged page via a crafted HTML page...

CVE-2021-37967

Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page...