SUSE Package Hub - openSUSE-2021-268

Update Info

openSUSE-2021-268

Security update for chromium

Type: security

Severity: important

Issued: 2021-02-10

Description:

This update for chromium fixes the following issues:

- Update to 88.0.4324.146 boo#1181772
  - CVE-2021-21142: Use after free in Payments
  - CVE-2021-21143: Heap buffer overflow in Extensions
  - CVE-2021-21144: Heap buffer overflow in Tab Groups.
  - CVE-2021-21145: Use after free in Fonts
  - CVE-2021-21146: Use after free in Navigation.
  - CVE-2021-21147: Inappropriate implementation in Skia

This update was imported from the openSUSE:Leap:15.2:Update update project.

References

CVE: CVE-2021-21147
CVE: CVE-2021-21146
CVE: CVE-2021-21145
CVE: CVE-2021-21144
CVE: CVE-2021-21143
CVE: CVE-2021-21142
Bugzilla: 1181772 VUL-0: CVE-2021-21142,CVE-2021-21143,CVE-2021-21144,CVE-2021-21145,CVE-2021-21146,CVE-2021-21147: chromium: Update to 88.0.4324.146

Packages

chromium-88.0.4324.146-bp152.2.56.5