SUSE Package Hub - openSUSE-2020-1328

Update Info

openSUSE-2020-1328

Security update for chromium

Type: security

Severity: important

Issued: 2020-09-03

Description:

This update for chromium fixes the following issues:

Chromium was updated to version 85.0.4183.83 (boo#1175757) fixing: 

- CVE-2020-6558: Insufficient policy enforcement in iOS
- CVE-2020-6559: Use after free in presentation API
- CVE-2020-6560: Insufficient policy enforcement in autofill
- CVE-2020-6561: Inappropriate implementation in Content Security Policy
- CVE-2020-6562: Insufficient policy enforcement in Blink
- CVE-2020-6563: Insufficient policy enforcement in intent handling.
- CVE-2020-6564: Incorrect security UI in permissions
- CVE-2020-6565: Incorrect security UI in Omnibox.
- CVE-2020-6566: Insufficient policy enforcement in media. 
- CVE-2020-6567: Insufficient validation of untrusted input in command line handling.
- CVE-2020-6568: Insufficient policy enforcement in intent handling.
- CVE-2020-6569: Integer overflow in WebUSB.
- CVE-2020-6570: Side-channel information leakage in WebRTC. 
- CVE-2020-6571: Incorrect security UI in Omnibox.

This update was imported from the openSUSE:Leap:15.1:Update update project.

References

CVE: CVE-2020-6571
CVE: CVE-2020-6570
CVE: CVE-2020-6569
CVE: CVE-2020-6568
CVE: CVE-2020-6567
CVE: CVE-2020-6566
CVE: CVE-2020-6565
CVE: CVE-2020-6564
CVE: CVE-2020-6563
CVE: CVE-2020-6562
CVE: CVE-2020-6561
CVE: CVE-2020-6560
CVE: CVE-2020-6559
CVE: CVE-2020-6558
Bugzilla: 1175757 VUL-0: chromium: Update to 85.0.4183.83

Packages

chromium-85.0.4183.69-bp151.3.104.1