[Git][security-tracker-team/security-tracker][master] Several chromium bugs fixed in unstable
Salvatore Bonaccorso
carnil at debian.org
Mon Dec 21 05:49:22 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
441a09e4 by Salvatore Bonaccorso at 2020-12-21T06:48:56+01:00
Several chromium bugs fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -37462,7 +37462,7 @@ CVE-2020-16043
CVE-2020-16042
RESERVED
{DSA-4815-1 DSA-4813-1 DLA-2497-1 DLA-2496-1}
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
- firefox 84.0-1
- firefox-esr 78.6.0esr-1
@@ -37472,119 +37472,119 @@ CVE-2020-16042
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-56/#CVE-2020-16042
CVE-2020-16041
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16040
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16039
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16038
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16037
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16036
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16035
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16034
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16033
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16032
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16031
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16030
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16029
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16028
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16027
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16026
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16025
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16024
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16023
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16022
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16021
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16020
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16019
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16018
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16017
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16016
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16015
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16014
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16013
RESERVED
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16012
RESERVED
@@ -37592,7 +37592,7 @@ CVE-2020-16012
- firefox 83.0-1
- firefox-esr 78.5.0esr-1
- thunderbird 1:78.5.0-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-50/#CVE-2020-16012
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-51/#CVE-2020-16012
@@ -37602,34 +37602,34 @@ CVE-2020-16011 (Heap buffer overflow in UI in Google Chrome on Windows prior to
CVE-2020-16010 (Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4 ...)
- chromium <not-affected> (Android-specific)
CVE-2020-16009 (Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16008 (Stack buffer overflow in WebRTC in Google Chrome prior to 86.0.4240.18 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16007 (Insufficient data validation in installer in Google Chrome prior to 86 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16006 (Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16005 (Insufficient policy enforcement in ANGLE in Google Chrome prior to 86. ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16004 (Use after free in user interface in Google Chrome prior to 86.0.4240.1 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16003 (Use after free in printing in Google Chrome prior to 86.0.4240.111 all ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16002 (Use after free in PDFium in Google Chrome prior to 86.0.4240.111 allow ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16001 (Use after free in media in Google Chrome prior to 86.0.4240.111 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-16000 (Inappropriate implementation in Blink in Google Chrome prior to 86.0.4 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15999 (Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.1 ...)
{DSA-4777-1 DLA-2415-1}
@@ -37651,77 +37651,77 @@ CVE-2020-15994 (Use after free in V8 in Google Chrome prior to 86.0.4240.99 allo
CVE-2020-15993 (Use after free in printing in Google Chrome prior to 86.0.4240.99 allo ...)
- chromium <not-affected> (Chrome on Android)
CVE-2020-15992 (Insufficient policy enforcement in networking in Google Chrome prior t ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15991 (Use after free in password manager in Google Chrome prior to 86.0.4240 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15990 (Use after free in autofill in Google Chrome prior to 86.0.4240.75 allo ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15989 (Uninitialized data in PDFium in Google Chrome prior to 86.0.4240.75 al ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15988 (Insufficient policy enforcement in downloads in Google Chrome on Windo ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15987 (Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15986 (Integer overflow in media in Google Chrome prior to 86.0.4240.75 allow ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15985 (Inappropriate implementation in Blink in Google Chrome prior to 86.0.4 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15984 (Insufficient policy enforcement in Omnibox in Google Chrome on iOS pri ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15983 (Insufficient data validation in webUI in Google Chrome on ChromeOS pri ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15982 (Inappropriate implementation in cache in Google Chrome prior to 86.0.4 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15981 (Out of bounds read in audio in Google Chrome prior to 86.0.4240.75 all ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15980 (Insufficient policy enforcement in Intents in Google Chrome on Android ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15979 (Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15978 (Insufficient data validation in navigation in Google Chrome on Android ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15977 (Insufficient data validation in dialogs in Google Chrome on OS X prior ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15976 (Use after free in WebXR in Google Chrome on Android prior to 86.0.4240 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15975 (Integer overflow in SwiftShader in Google Chrome prior to 86.0.4240.75 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15974 (Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allow ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15973 (Insufficient policy enforcement in extensions in Google Chrome prior t ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15972 (Use after free in audio in Google Chrome prior to 86.0.4240.75 allowed ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15971 (Use after free in printing in Google Chrome prior to 86.0.4240.75 allo ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15970 (Use after free in NFC in Google Chrome prior to 86.0.4240.75 allowed a ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15969 (Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowe ...)
{DSA-4780-1 DSA-4778-1 DLA-2416-1 DLA-2411-1}
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
- firefox 82.0-1
- firefox-esr 78.4.0esr-1
@@ -37730,34 +37730,34 @@ CVE-2020-15969 (Use after free in WebRTC in Google Chrome prior to 86.0.4240.75
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-46/#CVE-2020-15969
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-47/#CVE-2020-15969
CVE-2020-15968 (Use after free in Blink in Google Chrome prior to 86.0.4240.75 allowed ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15967 (Use after free in payments in Google Chrome prior to 86.0.4240.75 allo ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15966 (Insufficient policy enforcement in extensions in Google Chrome prior t ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15965 (Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15964 (Insufficient data validation in media in Google Chrome prior to 85.0.4 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15963 (Insufficient policy enforcement in extensions in Google Chrome prior t ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15962 (Insufficient policy validation in serial in Google Chrome prior to 85. ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15961 (Insufficient policy validation in extensions in Google Chrome prior to ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15960 (Heap buffer overflow in storage in Google Chrome prior to 85.0.4183.12 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15959 (Insufficient policy enforcement in networking in Google Chrome prior t ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-15958 (An issue was discovered in 1CRM System through 8.6.7. An insecure dire ...)
NOT-FOR-US: 1CRM System
@@ -63635,221 +63635,221 @@ CVE-2020-6578
CVE-2020-6577
RESERVED
CVE-2020-6576 (Use after free in offscreen canvas in Google Chrome prior to 85.0.4183 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6575 (Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6574 (Insufficient policy enforcement in installer in Google Chrome on OS X ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6573 (Use after free in video in Google Chrome on Android prior to 85.0.4183 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6572
RESERVED
CVE-2020-6571 (Insufficient data validation in Omnibox in Google Chrome prior to 85.0 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6570 (Information leakage in WebRTC in Google Chrome prior to 85.0.4183.83 a ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6569 (Integer overflow in WebUSB in Google Chrome prior to 85.0.4183.83 allo ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6568 (Insufficient policy enforcement in intent handling in Google Chrome on ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6567 (Insufficient validation of untrusted input in command line handling in ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6566 (Insufficient policy enforcement in media in Google Chrome prior to 85. ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6565 (Inappropriate implementation in Omnibox in Google Chrome on iOS prior ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6564 (Inappropriate implementation in permissions in Google Chrome prior to ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6563 (Insufficient policy enforcement in intent handling in Google Chrome on ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6562 (Insufficient policy enforcement in Blink in Google Chrome prior to 85. ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6561 (Inappropriate implementation in Content Security Policy in Google Chro ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6560 (Insufficient policy enforcement in autofill in Google Chrome prior to ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6559 (Use after free in presentation API in Google Chrome prior to 85.0.4183 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6558 (Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prio ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6557 (Inappropriate implementation in networking in Google Chrome prior to 8 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6556 (Heap buffer overflow in SwiftShader in Google Chrome prior to 84.0.414 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6555 (Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 al ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6554 (Use after free in extensions in Google Chrome prior to 84.0.4147.125 a ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6553 (Use after free in offline mode in Google Chrome on iOS prior to 84.0.4 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6552 (Use after free in Blink in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6551 (Use after free in WebXR in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6550 (Use after free in IndexedDB in Google Chrome prior to 84.0.4147.125 al ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6549 (Use after free in media in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6548 (Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.125 a ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6547 (Incorrect security UI in media in Google Chrome prior to 84.0.4147.125 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6546 (Inappropriate implementation in installer in Google Chrome prior to 84 ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6545 (Use after free in audio in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6544 (Use after free in media in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6543 (Use after free in task scheduling in Google Chrome prior to 84.0.4147. ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6542 (Use after free in ANGLE in Google Chrome prior to 84.0.4147.125 allowe ...)
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6541 (Use after free in WebUSB in Google Chrome prior to 84.0.4147.105 allow ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6540 (Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowe ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6539 (Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6538 (Inappropriate implementation in WebView in Google Chrome on Android pr ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6537 (Type confusion in V8 in Google Chrome prior to 84.0.4147.105 allowed a ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6536 (Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 a ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6535 (Insufficient data validation in WebUI in Google Chrome prior to 84.0.4 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6534 (Heap buffer overflow in WebRTC in Google Chrome prior to 84.0.4147.89 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6533 (Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6532 (Use after free in SCTP in Google Chrome prior to 84.0.4147.105 allowed ...)
[experimental] - chromium 84.0.4147.105-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6531 (Side-channel information leakage in scroll to text in Google Chrome pr ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6530 (Out of bounds memory access in developer tools in Google Chrome prior ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6529 (Inappropriate implementation in WebRTC in Google Chrome prior to 84.0. ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6528 (Incorrect security UI in basic auth in Google Chrome on iOS prior to 8 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6527 (Insufficient policy enforcement in CSP in Google Chrome prior to 84.0. ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6526 (Inappropriate implementation in iframe sandbox in Google Chrome prior ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6525 (Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 al ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6524 (Heap buffer overflow in WebAudio in Google Chrome prior to 84.0.4147.8 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6523 (Out of bounds write in Skia in Google Chrome prior to 84.0.4147.89 all ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6522 (Inappropriate implementation in external protocol handlers in Google C ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6521 (Side-channel information leakage in autofill in Google Chrome prior to ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6520 (Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6519 (Policy bypass in CSP in Google Chrome prior to 84.0.4147.89 allowed a ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6518 (Use after free in developer tools in Google Chrome prior to 84.0.4147. ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6517 (Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6516 (Policy bypass in CORS in Google Chrome prior to 84.0.4147.89 allowed a ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6515 (Use after free in tab strip in Google Chrome prior to 84.0.4147.89 all ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6514 (Inappropriate implementation in WebRTC in Google Chrome prior to 84.0. ...)
{DSA-4740-1 DSA-4736-1 DLA-2310-1 DLA-2297-1}
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
- firefox 79.0-1
- firefox-esr 68.11.0esr-1
@@ -63860,19 +63860,19 @@ CVE-2020-6514 (Inappropriate implementation in WebRTC in Google Chrome prior to
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-35/#CVE-2020-6514
CVE-2020-6513 (Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6512 (Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6511 (Information leak in content security policy in Google Chrome prior to ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6510 (Heap buffer overflow in background fetch in Google Chrome prior to 84. ...)
[experimental] - chromium 84.0.4147.89-1
- - chromium <unfixed>
+ - chromium 87.0.4280.88-0.1
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6509 (Use after free in extensions in Google Chrome prior to 83.0.4103.116 a ...)
{DSA-4714-1}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/441a09e4fb9fe908cfb3227323407af6a9843061
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/441a09e4fb9fe908cfb3227323407af6a9843061
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201221/1ffc005b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list