CVE-2021-21210

Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page...

CVE-2021-21210

Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted HTML page...

Privilege Escalation

chromium is vulnerable to privilege escalation. Inappropriate implementation in Network allows an attacker to perform an action which is otherwise not permitted...

FreeBSD : chromium -- multiple vulnerabilities (f3d86439-9def-11eb-97a0-e09467587c17)

Chrome Releases reports : This release contains 37 security fixes, including : - 1025683 High CVE-2021-21201: Use after free in permissions. Reported by Gengming Liu, Jianyu Chen at Tencent Keen Security Lab on 2019-11-18 - 1188889 High CVE-2021-21202: Use after free in extensions. Reported by...

Chromium: CVE-2021-21211 Inappropriate implementation in Navigation

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Chromium: CVE-2021-21209 Inappropriate implementation in storage

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 37 security fixes, including: 1025683 High CVE-2021-21201: Use after free in permissions. Reported by Gengming Liu, Jianyu Chen at Tencent Keen Security Lab on 2019-11-18 1188889 High CVE-2021-21202: Use after free in extensions. Reported by David...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Mar 2021)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

openSUSE Security Update : chromium (openSUSE-2021-392)

This update for chromium fixes the following issues : Update to 89.0.4389.72 boo1182358, boo1182960 : - CVE-2021-21159: Heap buffer overflow in TabStrip. - CVE-2021-21160: Heap buffer overflow in WebAudio. - CVE-2021-21161: Heap buffer overflow in TabStrip. - CVE-2021-21162: Use after free in...

NewStart CGSL CORE 5.04 / MAIN 5.04 : thunderbird Multiple Vulnerabilities (NS-SA-2021-0006)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has thunderbird packages installed that are affected by multiple vulnerabilities: - Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to potentially exploit heap corruption via a crafted...

Design/Logic Flaw

Inappropriate implementation in Compositing in Google Chrome on Linux and Windows prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Hardcoded credentials

Inappropriate implementation in full screen mode in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Design/Logic Flaw

Inappropriate implementation in Referrer in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

CVE-2021-21174

Inappropriate implementation in Referrer in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page...

CVE-2021-21184

CVE-2021-21184 relates to Google Chrome/Chromium where an inappropriate implementation in the Performance API allowed a remote attacker to leak cross-origin data via a crafted HTML page. Affected product: Chromium/Chrome browser (Performance API component). Root cause: improper implementation in ...

CVE-2021-21183

CVE-2021-21183: In Google Chrome/Chromium before 89.0.4389.72, an inappropriate implementation in the Performance APIs allowed a remote attacker to leak cross-origin data via a crafted HTML page. The issue is part of a broader set of Chromium-related vulnerabilities fixed in late 2021; Debian adv...

CVE-2021-21174

CVE-2021-21174 is an implementation error in the Referrer policy handling in Chromium/Google Chrome before 89.0.4389.72, allowing a remote attacker to bypass navigation restrictions via a crafted HTML page. Affected product: Chromium/Chrome (referrer policy component). Root cause: inappropriate/r...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0401-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0392-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...

Chromium CVE-2021-21184: Inappropriate implementation in performance APIs

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...