Arbitrary Code Execution

chromium is vulnerable to arbitrary code execution. A use-after-free in WebAuthentication allows an attacker to execute arbitrary code on the host OS by tricking a user into visiting a malicious web page...

Chromium: CVE-2021-30528 Use after free in WebAuthentication

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome post-release reuse vulnerability (CNVD-2021-41140)

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A post-release reuse vulnerability in WebAuthentication in versions prior to Google Chrome 91.0.4472.77 can be exploited by a remote attacker to corrupt the rendere...

The vulnerability in the implementation of WebAuthentication browser by Google Chrome allows a violator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the WebAuthentication browser implementation by Google Chrome relates to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

RHEL 6 : chromium-browser (RHSA-2020:2544)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2544 advisory. Chromium is an open-source web browser, powered by WebKit Blink. This update upgrades Chromium to version 83.0.4103.97. Security Fixes:...

FreeBSD : chromium -- multiple vulnerabilities (a2caf7bd-a719-11ea-a857-e09467587c17)

Chrome Releases reports : This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers. - 1082105 High CVE-2020-6493: Use after free in WebAuthentication. Reported by Anonymous on 2020-05-13 - 1083972 High CVE-2020-6494: Incorrect security UI in...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

Google Chrome Security Update (stable-channel-update-for-desktop-2020-06) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

DEBIAN-CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

Design/Logic Flaw

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

CVE-2020-6493

Use after free in WebAuthentication in Google Chrome prior to 83.0.4103.97 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

CVE-2020-6493

CVE-2020-6493: A use-after-free in Chrome’s WebAuthentication component (older than 83.0.4103.97) could allow a remote attacker who compromises the renderer to escape the sandbox via a crafted HTML page. Affected product is Google Chrome. The issue is fixed in 83.0.4103.97 (upstream); Debian/Arch...

Stable Channel Update for Desktop

The stable channel has been updated to 83.0.4103.97 for Windows, Mac, and Linux, which will roll out over the coming days/weeks. Security Fixes and Rewards Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictio...

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers. 1082105 High CVE-2020-6493: Use after free in WebAuthentication. Reported by Anonymous on 2020-05-13 1083972 High CVE-2020-6494: Incorrect security UI in...