CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
96.8%
Chromium is an open-source web browser, powered by WebKit (Blink).
This update upgrades Chromium to version 84.0.4147.135.
Security Fix(es):
chromium-browser: Use after free in ANGLE (CVE-2020-6542)
chromium-browser: Use after free in task scheduling (CVE-2020-6543)
chromium-browser: Use after free in media (CVE-2020-6544)
chromium-browser: Use after free in audio (CVE-2020-6545)
chromium-browser: Inappropriate implementation in installer (CVE-2020-6546)
chromium-browser: Incorrect security UI in media (CVE-2020-6547)
chromium-browser: Heap buffer overflow in Skia (CVE-2020-6548)
chromium-browser: Use after free in media (CVE-2020-6549)
chromium-browser: Use after free in IndexedDB (CVE-2020-6550)
chromium-browser: Use after free in WebXR (CVE-2020-6551)
chromium-browser: Use after free in Blink (CVE-2020-6552)
chromium-browser: Use after free in offline mode (CVE-2020-6553)
chromium-browser: Heap buffer overflow in SwiftShader (CVE-2020-6556)
chromium-browser: Use after free in extensions (CVE-2020-6554)
chromium-browser: Out of bounds read in WebGL (CVE-2020-6555)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | i686 | chromium-browser-debuginfo | < 84.0.4147.135-1.el6_10 | chromium-browser-debuginfo-84.0.4147.135-1.el6_10.i686.rpm |
RedHat | 6 | i686 | chromium-browser | < 84.0.4147.135-1.el6_10 | chromium-browser-84.0.4147.135-1.el6_10.i686.rpm |
RedHat | 6 | x86_64 | chromium-browser | < 84.0.4147.135-1.el6_10 | chromium-browser-84.0.4147.135-1.el6_10.x86_64.rpm |
RedHat | 6 | x86_64 | chromium-browser-debuginfo | < 84.0.4147.135-1.el6_10 | chromium-browser-debuginfo-84.0.4147.135-1.el6_10.x86_64.rpm |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
96.8%