Overview

File _patchinfo of Package patchinfo.17023

<patchinfo incident="17023">
  <issue tracker="bnc" id="1191166">VUL-0: chromium: multiple security issues fixed in 94.0.4606.61</issue>
  <issue tracker="bnc" id="1190765">VUL-0: chromium: multiple security issues fixed in 94.0.4606.54</issue>
  <issue tracker="bnc" id="1191204">VUL-0: chromium: multiple security issues fixed in 94.0.4606.71</issue>
  <issue tracker="cve" id="2021-37975"/>
  <issue tracker="cve" id="2021-37960"/>
  <issue tracker="cve" id="2021-37974"/>
  <issue tracker="cve" id="2021-37973"/>
  <issue tracker="cve" id="2021-37969"/>
  <issue tracker="cve" id="2021-37956"/>
  <issue tracker="cve" id="2021-37957"/>
  <issue tracker="cve" id="2021-37970"/>
  <issue tracker="cve" id="2021-37959"/>
  <issue tracker="cve" id="2021-37967"/>
  <issue tracker="cve" id="2021-37976"/>
  <issue tracker="cve" id="2021-37962"/>
  <issue tracker="cve" id="2021-37966"/>
  <issue tracker="cve" id="2021-37972"/>
  <issue tracker="cve" id="2021-37965"/>
  <issue tracker="cve" id="2021-37958"/>
  <issue tracker="cve" id="2021-37964"/>
  <issue tracker="cve" id="2021-37961"/>
  <issue tracker="cve" id="2021-37968"/>
  <issue tracker="cve" id="2021-37963"/>
  <issue tracker="cve" id="2021-37971"/>
  <packager>gmbr3</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for chromium</summary>
  <description>This update for chromium fixes the following issues:

Chromium 94.0.4606.54 (boo#1190765):

* CVE-2021-37956: Use after free in Offline use
* CVE-2021-37957: Use after free in WebGPU
* CVE-2021-37958: Inappropriate implementation in Navigation
* CVE-2021-37959: Use after free in Task Manager
* CVE-2021-37960: Inappropriate implementation in Blink graphics
* CVE-2021-37961: Use after free in Tab Strip
* CVE-2021-37962: Use after free in Performance Manager
* CVE-2021-37963: Side-channel information leakage in DevTools
* CVE-2021-37964: Inappropriate implementation in ChromeOS Networking
* CVE-2021-37965: Inappropriate implementation in Background Fetch API
* CVE-2021-37966: Inappropriate implementation in Compositing
* CVE-2021-37967: Inappropriate implementation in Background Fetch API
* CVE-2021-37968: Inappropriate implementation in Background Fetch API
* CVE-2021-37969: Inappropriate implementation in Google Updater
* CVE-2021-37970: Use after free in File System API
* CVE-2021-37971: Incorrect security UI in Web Browser UI
* CVE-2021-37972: Out of bounds read in libjpeg-turbo

Chromium 94.0.4606.61 (boo#1191166):

* CVE-2021-37973: Use after free in Portals

Chromium 94.0.4606.71 (boo#1191204):

* CVE-2021-37974 : Use after free in Safe Browsing
* CVE-2021-37975 : Use after free in V8
* CVE-2021-37976 : Information leak in core
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places