31 matches found
Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs
Google on Thursday rolled out an emergency update for its Chrome web browser, including fixes for two zero-day vulnerabilities that it says are being actively exploited in the wild. Tracked as CVE-2021-38000 and CVE-2021-38003, the weaknesses relate to insufficient validation of untrusted input i...
New Chrome 0-Day Bug Under Active Attacks – Update Your Browser ASAP!
Attention readers, if you are using Google Chrome browser on your Windows, Mac, or Linux computers, you need to update it immediately to the latest version Google released earlier today. The internet services company has rolled out an urgent update to the browser to address 14 newly discovered...
openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0267-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Another Google Chrome 0-Day Bug Found Actively Exploited In-the-Wild
Google has addressed yet another actively exploited zero-day in Chrome browser, marking the second such fix released by the company within a month. The browser maker on Friday shipped 89.0.4389.90 for Windows, Mac, and Linux, which is expected to be rolling out over the coming days/weeks to all...
Debian DSA-4858-1 : chromium - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2021-21148 Mattias Buelens discovered a buffer overflow issue in the v8 JavaScript library. - CVE-2021-21149 Ryoya Tsukasaki discovered a stack overflow issue in the Data Transfer implementation. - CVE-2021-21150 Wooj...
Debian: Security Advisory (DSA-4858-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4858-1] chromium security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4858-1 [email protected] https://www.debian.org/security/ Michael Gilbert February 19, 2021 https://www.debian.org/security/faq -...
openSUSE Security Update : opera (openSUSE-2021-296)
This update for opera fixes the following issues : - Update to version 74.0.3911.107 - CHR-8311 Update chromium on desktop-stable-88-3911 to 88.0.4324.150 - DNA-90329 Implement clientcapabilities negotiation for Flow / Sync - DNA-90560 Search Tabs Open Tabs On Top - DNA-90620 Add opauto tests for...
openSUSE Security Update : chromium (openSUSE-2021-267)
This update for chromium fixes the following issues : Update to 88.0.4324.150 boo1181827 - CVE-2021-21148: Heap buffer overflow in V8 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2021-267. The text...
Fedora 33 : chromium (2021-05afa65d39)
The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-05afa65d39 advisory. - Use after free in Payments in Google Chrome on Mac prior to 88.0.4324.146 allowed a remote attacker to potentially perform a sandbox escape via a...
Fedora: Security Advisory for chromium (FEDORA-2021-05afa65d39)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:0267-1 Security update for chromium
This update for chromium fixes the following issues: Update to 88.0.4324.150 boo1181827 - CVE-2021-21148: Heap buffer overflow in V8...
CVE-2021-21148
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21148
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21148
CVE-2021-21148 is a heap buffer overflow in the V8 engine of Google Chrome/Chromium up to version 88.0.4324.150, enabling a remote attacker to potentially corrupt the heap via a crafted HTML page. Connected advisories confirm this affects Chromium-based browsers and note public fixes: Debian repo...
CVE-2021-21148
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21148
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2021-21148
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.150 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Microsoft Edge (Chromium) < 88.0.705.63 Vulnerability
The version of Microsoft Edge installed on the remote Windows host is prior to 88.0.705.63. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-21148 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...
FreeBSD : chromium -- heap buffer overflow in V8 (3e01aad2-680e-11eb-83e2-e09467587c17)
Chrome Releases reports : 1170176 High CVE-2021-21148: Heap buffer overflow in V8. Reported by Mattias Buelens on 2021-01-24. Google is aware of reports that an exploit for CVE-2021-21148 exists in the wild. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...