Lucene search
SuseOPENSUSE-SU-2020:1831-1HistoryNov 05, 2020 - 12:00 a.m.
Security update for chromium (important)
2020-11-0500:00:00
lists.opensuse.org
39
0.805 High
EPSS
Percentile
98.3%
An update that fixes 7 vulnerabilities is now available.
Description:
This update for chromium fixes the following issues:
- Update to 86.0.4240.183 boo#1178375
- CVE-2020-16004: Use after free in user interface.
- CVE-2020-16005: Insufficient policy enforcement in ANGLE.
- CVE-2020-16006: Inappropriate implementation in V8
- CVE-2020-16007: Insufficient data validation in installer.
- CVE-2020-16008: Stack buffer overflow in WebRTC.
- CVE-2020-16009: Inappropriate implementation in V8.
- CVE-2020-16011: Heap buffer overflow in UI on Windows.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or βzypper patchβ.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2020-1831=1
-
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2020-1831=1
-
openSUSE Backports SLE-15-SP1:
zypper in -t patch openSUSE-2020-1831=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | x86_64 | <Β - openSUSE Leap 15.2 (x86_64): | - openSUSE Leap 15.2 (x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.1 | x86_64 | <Β - openSUSE Leap 15.1 (x86_64): | - openSUSE Leap 15.1 (x86_64):.x86_64.rpm | |
| openSUSE Backports SLE | 15-SP1 | aarch64 | - opensuse backports sle | <Β 15-SP1 (aarch64 x86_64): | - openSUSE Backports SLE-15-SP1 (aarch64 x86_64):.aarch64.rpm |
| openSUSE Backports SLE | 15-SP1 | x86_64 | - opensuse backports sle | <Β 15-SP1 (aarch64 x86_64): | - openSUSE Backports SLE-15-SP1 (aarch64 x86_64):.x86_64.rpm |
Related
openvas
openvas
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (3ec6ab59-1e0c-11eb-a428-3065ec8fd3ec)
2020-11-06 00:00:00
Google Chrome < 86.0.4240.183 Multiple Vulnerabilities
2020-11-02 00:00:00
Microsoft Edge (Chromium) < 86.0.622.63 Multiple Vulnerabilities
2020-11-04 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2020-11-02 00:00:00
kaspersky
kaspersky
KLA12014 Multiple vulnerabilities in Opera
2020-11-10 00:00:00
KLA11990 Multiple vulnerabilities in Google Chrome
2020-11-02 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-11-02 00:00:00
suse
suse
Security update for chromium (important)
2020-11-16 00:00:00
Security update for opera (important)
2020-11-17 00:00:00
Security update for chromium, gn (important)
2020-11-05 00:00:00
archlinux
archlinux
[ASA-202011-2] chromium: multiple issues
2020-11-03 00:00:00
redhat
redhat
(RHSA-2020:4974) Important: chromium-browser security update
2020-11-09 09:09:10
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2020-11-11 00:00:00
threatpost
threatpost
Two Chrome Browser Updates Plug Holes Actively Targeted by Exploits
2020-11-03 17:23:23
2 More Google Chrome Zero-Days Under Active Exploitation
2020-11-12 14:10:57
veracode
veracode
Denial Of Service(DoS)
2020-12-21 18:50:35
Sandbox Restrictions Bypass
2021-01-02 19:31:26
Privilege Escalation
2020-12-21 18:50:28
cvelist
cvelist
redhatcve
redhatcve
cve
cve
nvd
nvd
debiancve
debiancve
prion
prion
Stack overflow
2020-11-03 03:15:00
Input validation
2020-11-03 03:15:00
Design/Logic Flaw
2020-11-03 03:15:00
ubuntucve
ubuntucve
gitlab
gitlab
Access of Resource Using Incompatible Type ('Type Confusion')
2020-12-02 00:00:00
Access of Resource Using Incompatible Type ('Type Confusion')
2020-12-02 00:00:00
Access of Resource Using Incompatible Type ('Type Confusion')
2020-12-02 00:00:00
packetstorm
packetstorm
Chrome V8 Turbofan Type Confusion
2020-11-09 00:00:00
attackerkb
attackerkb
CVE-2020-16009
2020-11-03 00:00:00
CVE-2020-15999 Chrome Freetype 0day
2020-11-03 00:00:00
CVE-2020-17087 Windows Kernel local privilege escalation 0day
2020-11-11 00:00:00
cisa_kev
cisa_kev
Google Chromium V8 Type Confusion Vulnerability
2021-11-03 00:00:00
cisa
cisa
Google Releases Security Updates for Chrome, CVE-2020-16009
2020-11-03 00:00:00
github
github
Inappropriate implementation in V8
2020-12-02 18:28:47
osv
osv
Inappropriate implementation in V8
2020-12-02 18:28:47
CVE-2020-16009
2020-11-03 03:15:15
chromium - security update
2021-01-01 00:00:00
zdt
zdt
Chrome V8 Turbofan Type Confusion Exploit
2020-11-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Google Chrome Type Confusion (CVE-2020-16009)
2020-11-25 00:00:00
malwarebytes
malwarebytes
Update your Chrome again as Google patches second zero-day in two weeks
2020-11-03 18:30:00
Hat trick for Google as it patches two more zero-days in Chrome
2020-11-12 21:16:34
thn
thn
Two New Chrome 0-Days Under Active Attacks β Update Your Browser
2020-11-12 03:36:00
New Chrome Zero-Day Under Active Attacks β Update Your Browser
2020-11-03 09:33:00
Update Your iOS Devices Now β 3 Actively Exploited 0-Days Discovered
2020-11-06 07:48:00
ibm
ibm
fedora
fedora
[SECURITY] Fedora 32 Update: chromium-87.0.4280.66-1.fc32
2020-11-24 01:23:14
[SECURITY] Fedora 33 Update: chromium-86.0.4240.183-1.fc33
2020-11-14 01:13:13
ics
ics
Rockwell Automation Connected Components Workbench
2023-09-21 12:00:00
googleprojectzero
googleprojectzero
In-the-Wild Series: October 2020 0-day discovery
2021-03-18 00:00:00
The More You Know, The More You Know You Donβt Know
2022-04-19 00:00:00
debian
debian
[SECURITY] [DSA 4824-1] chromium security update
2021-01-01 18:49:56
mscve
mscve
Chromium Security Updates for Microsoft Edge (Chromium-Based)
2020-01-28 08:00:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00