[Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues in unstable

Salvatore Bonaccorso carnil at debian.org
Sun Jan 10 19:47:47 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e0e9f594 by Salvatore Bonaccorso at 2021-01-10T20:46:36+01:00
Track fixed version for chromium issues in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6738,37 +6738,37 @@ CVE-2021-21118
 CVE-2021-21117
 	RESERVED
 CVE-2021-21116 (Heap buffer overflow in audio in Google Chrome prior to 87.0.4280.141  ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21115 (User after free in safe browsing in Google Chrome prior to 87.0.4280.1 ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21114 (Use after free in audio in Google Chrome prior to 87.0.4280.141 allowe ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21113 (Heap buffer overflow in Skia in Google Chrome prior to 87.0.4280.141 a ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21112 (Use after free in Blink in Google Chrome prior to 87.0.4280.141 allowe ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21111 (Insufficient policy enforcement in WebUI in Google Chrome prior to 87. ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21110 (Use after free in safe browsing in Google Chrome prior to 87.0.4280.14 ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21109 (Use after free in payments in Google Chrome prior to 87.0.4280.141 all ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21108 (Use after free in media in Google Chrome prior to 87.0.4280.141 allowe ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21107 (Use after free in drag and drop in Google Chrome on Linux prior to 87. ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2021-21106 (Use after free in autofill in Google Chrome prior to 87.0.4280.141 all ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-35626 (An issue was discovered in the PushToWatch extension for MediaWiki thr ...)
 	NOT-FOR-US: PushToWatch MediaWiki extension
@@ -44507,7 +44507,7 @@ CVE-2020-16044
 	- firefox-esr 78.6.1esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-01/#CVE-2020-16044
 CVE-2020-16043 (Insufficient data validation in networking in Google Chrome prior to 8 ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-16042 (Uninitialized Use in V8 in Google Chrome prior to 87.0.4280.88 allowed ...)
 	{DSA-4824-1 DSA-4815-1 DSA-4813-1 DLA-2497-1 DLA-2496-1}
@@ -44704,7 +44704,7 @@ CVE-2020-15997 (Use after free in Mojo in Google Chrome prior to 86.0.4240.99 al
 CVE-2020-15996 (Use after free in passwords in Google Chrome prior to 86.0.4240.99 all ...)
 	- chromium <not-affected> (Chrome on Android)
 CVE-2020-15995 (Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allow ...)
-	- chromium <unfixed> (bug #979533)
+	- chromium 87.0.4280.141-0.1 (bug #979533)
 	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-15994 (Use after free in V8 in Google Chrome prior to 86.0.4240.99 allowed a  ...)
 	- chromium <not-affected> (Chrome on Android)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0e9f5942ca8c3cde1afa2ac530f27b42bed6057

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0e9f5942ca8c3cde1afa2ac530f27b42bed6057
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210110/1b4b5f1d/attachment.html>

More information about the debian-security-tracker-commits mailing list