[Git][security-tracker-team/security-tracker][master] Add more chromium issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Dec 23 14:12:31 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3ac38364 by Salvatore Bonaccorso at 2021-12-23T15:11:16+01:00
Add more chromium issues

Note to reviewers: Please double check. Two issues are not very clear.
The mention at first "on Android" and "on ChromeOS" but are still
have a reference to the destkop updates.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22737,41 +22737,59 @@ CVE-2021-38024
 CVE-2021-38023
 	RESERVED
 CVE-2021-38022 (Inappropriate implementation in WebAuthentication in Google Chrome pri ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38021 (Inappropriate implementation in referrer in Google Chrome prior to 96. ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38020 (Insufficient policy enforcement in contacts picker in Google Chrome on ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38019 (Insufficient policy enforcement in CORS in Google Chrome prior to 96.0 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38018 (Inappropriate implementation in navigation in Google Chrome prior to 9 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38017 (Insufficient policy enforcement in iframe sandbox in Google Chrome pri ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38016 (Insufficient policy enforcement in background fetch in Google Chrome p ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38015 (Inappropriate implementation in input in Google Chrome prior to 96.0.4 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38014 (Out of bounds write in Swiftshader in Google Chrome prior to 96.0.4664 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38013 (Heap buffer overflow in fingerprint recognition in Google Chrome on Ch ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38012 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a  ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38011 (Use after free in storage foundation in Google Chrome prior to 96.0.46 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38010 (Inappropriate implementation in service workers in Google Chrome prior ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38009 (Inappropriate implementation in cache in Google Chrome prior to 96.0.4 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38008 (Use after free in media in Google Chrome prior to 96.0.4664.45 allowed ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38007 (Type confusion in V8 in Google Chrome prior to 96.0.4664.45 allowed a  ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38006 (Use after free in storage foundation in Google Chrome prior to 96.0.46 ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38005 (Use after free in loader in Google Chrome prior to 96.0.4664.45 allowe ...)
-	TODO: check
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-38004 (Insufficient policy enforcement in Autofill in Google Chrome prior to  ...)
 	- chromium <unfixed>
 	[stretch] - chromium <end-of-life> (see DSA 4562)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ac383644eab5cc4623108b5e62975985c3846ec

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ac383644eab5cc4623108b5e62975985c3846ec
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211223/9ccabefe/attachment.htm>

More information about the debian-security-tracker-commits mailing list