[Git][security-tracker-team/security-tracker][master] Track fixes for chromium via experimental (for later merge into unstable entry)
Salvatore Bonaccorso
carnil at debian.org
Sun Jul 26 20:51:07 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3f47c1c1 by Salvatore Bonaccorso at 2020-07-26T21:50:30+02:00
Track fixes for chromium via experimental (for later merge into unstable entry)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24667,83 +24667,109 @@ CVE-2020-6538
CVE-2020-6537
RESERVED
CVE-2020-6536 (Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 a ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6535 (Insufficient data validation in WebUI in Google Chrome prior to 84.0.4 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6534 (Heap buffer overflow in WebRTC in Google Chrome prior to 84.0.4147.89 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6533 (Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6532
RESERVED
CVE-2020-6531 (Side-channel information leakage in scroll to text in Google Chrome pr ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6530 (Out of bounds memory access in developer tools in Google Chrome prior ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6529 (Inappropriate implementation in WebRTC in Google Chrome prior to 84.0. ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6528 (Incorrect security UI in basic auth in Google Chrome on iOS prior to 8 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6527 (Insufficient policy enforcement in CSP in Google Chrome prior to 84.0. ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6526 (Inappropriate implementation in iframe sandbox in Google Chrome prior ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6525 (Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 al ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6524 (Heap buffer overflow in WebAudio in Google Chrome prior to 84.0.4147.8 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6523 (Out of bounds write in Skia in Google Chrome prior to 84.0.4147.89 all ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6522 (Inappropriate implementation in external protocol handlers in Google C ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6521 (Side-channel information leakage in autofill in Google Chrome prior to ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6520 (Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6519 (Policy bypass in CSP in Google Chrome prior to 84.0.4147.89 allowed a ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6518 (Use after free in developer tools in Google Chrome prior to 84.0.4147. ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6517 (Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6516 (Policy bypass in CORS in Google Chrome prior to 84.0.4147.89 allowed a ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6515 (Use after free in tab strip in Google Chrome prior to 84.0.4147.89 all ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6514 (Inappropriate implementation in WebRTC in Google Chrome prior to 84.0. ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6513 (Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6512 (Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6511 (Information leak in content security policy in Google Chrome prior to ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6510 (Heap buffer overflow in background fetch in Google Chrome prior to 84. ...)
+ [experimental] - chromium 84.0.4147.89-1
- chromium <unfixed>
[stretch] - chromium <end-of-life> (see DSA 4562)
CVE-2020-6509 (Use after free in extensions in Google Chrome prior to 83.0.4103.116 a ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f47c1c12c11670ab5a5143687a1f98a62ff80db
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3f47c1c12c11670ab5a5143687a1f98a62ff80db
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200726/42ea53c8/attachment.html>
More information about the debian-security-tracker-commits
mailing list