File _patchinfo of Package patchinfo.14884
<patchinfo incident="14884"> <issue tracker="bnc" id="1177936">VUL-0: chromium: update to 86.0.4240.111</issue> <issue tracker="bnc" id="1178375">VUL-0: chromium: stable update to 86.0.4240.183</issue> <issue tracker="bnc" id="1177408">VUL-0: chromium: Update to 86.0.4240.75</issue> <issue tracker="cve" id="2020-15977"/> <issue tracker="cve" id="2020-15976"/> <issue tracker="cve" id="2020-15974"/> <issue tracker="cve" id="2020-16005"/> <issue tracker="cve" id="2020-15988"/> <issue tracker="cve" id="2020-15968"/> <issue tracker="cve" id="2020-16002"/> <issue tracker="cve" id="2020-15967"/> <issue tracker="cve" id="2020-15983"/> <issue tracker="cve" id="2020-15989"/> <issue tracker="cve" id="2020-15971"/> <issue tracker="cve" id="2020-15985"/> <issue tracker="cve" id="2020-15969"/> <issue tracker="cve" id="2020-15975"/> <issue tracker="cve" id="2020-16011"/> <issue tracker="cve" id="2020-15999"/> <issue tracker="cve" id="2020-6557"/> <issue tracker="cve" id="2020-15984"/> <issue tracker="cve" id="2020-15979"/> <issue tracker="cve" id="2020-16006"/> <issue tracker="cve" id="2020-16004"/> <issue tracker="cve" id="2020-15972"/> <issue tracker="cve" id="2020-15990"/> <issue tracker="cve" id="2020-15973"/> <issue tracker="cve" id="2020-15980"/> <issue tracker="cve" id="2020-16008"/> <issue tracker="cve" id="2020-15970"/> <issue tracker="cve" id="2020-16007"/> <issue tracker="cve" id="2020-16000"/> <issue tracker="cve" id="2020-15978"/> <issue tracker="cve" id="2020-16009"/> <issue tracker="cve" id="2020-16003"/> <issue tracker="cve" id="2020-15987"/> <issue tracker="cve" id="2020-15992"/> <issue tracker="cve" id="2020-15981"/> <issue tracker="cve" id="2020-15982"/> <issue tracker="cve" id="2020-15991"/> <issue tracker="cve" id="2020-16001"/> <issue tracker="cve" id="2020-15986"/> <packager>gmbr3</packager> <rating>important</rating> <category>security</category> <summary>Security update for chromium, gn</summary> <description>This update for chromium, gn fixes the following issues: chromium was updated to 86.0.4240.183 boo#1178375 - CVE-2020-16004: Use after free in user interface. - CVE-2020-16005: Insufficient policy enforcement in ANGLE. - CVE-2020-16006: Inappropriate implementation in V8 - CVE-2020-16007: Insufficient data validation in installer. - CVE-2020-16008: Stack buffer overflow in WebRTC. - CVE-2020-16009: Inappropriate implementation in V8. - CVE-2020-16011: Heap buffer overflow in UI on Windows. Update to 86.0.4240.111 boo#1177936 - CVE-2020-16000: Inappropriate implementation in Blink. - CVE-2020-16001: Use after free in media. - CVE-2020-16002: Use after free in PDFium. - CVE-2020-15999: Heap buffer overflow in Freetype. - CVE-2020-16003: Use after free in printing. - chromium-86-f_seal.patch: F_SEAL* definitions added for leap 15.1 and 15.2 - Remove vdpau->vaapi bridge as it breaks a lot: (fixes welcome by someone else than me) - Fix cookiemonster: Update to 86.0.4240.75 boo#1177408: * CVE-2020-15967: Use after free in payments. * CVE-2020-15968: Use after free in Blink. * CVE-2020-15969: Use after free in WebRTC. * CVE-2020-15970: Use after free in NFC. * CVE-2020-15971: Use after free in printing. * CVE-2020-15972: Use after free in audio. * CVE-2020-15990: Use after free in autofill. * CVE-2020-15991: Use after free in password manager. * CVE-2020-15973: Insufficient policy enforcement in extensions. * CVE-2020-15974: Integer overflow in Blink. * CVE-2020-15975: Integer overflow in SwiftShader. * CVE-2020-15976: Use after free in WebXR. * CVE-2020-6557: Inappropriate implementation in networking. * CVE-2020-15977: Insufficient data validation in dialogs. * CVE-2020-15978: Insufficient data validation in navigation. * CVE-2020-15979: Inappropriate implementation in V8. * CVE-2020-15980: Insufficient policy enforcement in Intents. * CVE-2020-15981: Out of bounds read in audio. * CVE-2020-15982: Side-channel information leakage in cache. * CVE-2020-15983: Insufficient data validation in webUI. * CVE-2020-15984: Insufficient policy enforcement in Omnibox. * CVE-2020-15985: Inappropriate implementation in Blink. * CVE-2020-15986: Integer overflow in media. * CVE-2020-15987: Use after free in WebRTC. * CVE-2020-15992: Insufficient policy enforcement in networking. * CVE-2020-15988: Insufficient policy enforcement in downloads. * CVE-2020-15989: Uninitialized Use in PDFium. - Update to 0.1807: * no upstream changelog </description> </patchinfo>
