Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2021:1350-1
HistoryOct 12, 2021 - 12:00 a.m.

Security update for chromium (important)

2021-10-1200:00:00
lists.opensuse.org
33
chromium
update
vulnerabilities
garbage collection
heap buffer overflow
webrtc
sandbox
offline use
webgpu
navigation
task manager
blink graphics
tab strip
performance manager
devtools
chromeos networking
background fetch api
compositing
google updater
file system api
security ui
libjpeg-turbo
portals
safe browsing
v8
information leak
opensuse leap 15.2

EPSS

0.163

Percentile

96.1%

JSON

An update that fixes 25 vulnerabilities is now available.

Description:

This update for chromium fixes the following issues:

Chromium 94.0.4606.81 (boo#1191463):

  • CVE-2021-37977: Use after free in Garbage Collection
  • CVE-2021-37978: Heap buffer overflow in Blink
  • CVE-2021-37979: Heap buffer overflow in WebRTC
  • CVE-2021-37980: Inappropriate implementation in Sandbox

Chromium 94.0.4606.54 (boo#1190765):

  • CVE-2021-37956: Use after free in Offline use
  • CVE-2021-37957: Use after free in WebGPU
  • CVE-2021-37958: Inappropriate implementation in Navigation
  • CVE-2021-37959: Use after free in Task Manager
  • CVE-2021-37960: Inappropriate implementation in Blink graphics
  • CVE-2021-37961: Use after free in Tab Strip
  • CVE-2021-37962: Use after free in Performance Manager
  • CVE-2021-37963: Side-channel information leakage in DevTools
  • CVE-2021-37964: Inappropriate implementation in ChromeOS Networking
  • CVE-2021-37965: Inappropriate implementation in Background Fetch API
  • CVE-2021-37966: Inappropriate implementation in Compositing
  • CVE-2021-37967: Inappropriate implementation in Background Fetch API
  • CVE-2021-37968: Inappropriate implementation in Background Fetch API
  • CVE-2021-37969: Inappropriate implementation in Google Updater
  • CVE-2021-37970: Use after free in File System API
  • CVE-2021-37971: Incorrect security UI in Web Browser UI
  • CVE-2021-37972: Out of bounds read in libjpeg-turbo

Chromium 94.0.4606.61 (boo#1191166):

  • CVE-2021-37973: Use after free in Portals

Chromium 94.0.4606.71 (boo#1191204):

  • CVE-2021-37974 : Use after free in Safe Browsing
  • CVE-2021-37975 : Use after free in V8
  • CVE-2021-37976 : Information leak in core

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or β€œzypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.2:

    zypper in -t patch openSUSE-2021-1350=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.2x86_64<Β - openSUSE Leap 15.2 (x86_64):- openSUSE Leap 15.2 (x86_64):.x86_64.rpm

Related

suse 4
osv 2
openvas 13
nessus 18
kaspersky 9
freebsd 3
chrome 3
gentoo 1
fedora 6
archlinux 1
threatpost 1
mscve 15
cvelist 14
cnvd 13
nvd 13
redhatcve 3
veracode 14
cve 13
debiancve 14
ubuntucve 16
prion 13
alpinelinux 5
cisa_kev 2
talos 1
hivepro 1
malwarebytes 1
suse
suse
Security update for chromium (important)
2021-10-11 00:00:00
Security update for opera (important)
2021-11-01 00:00:00
Security update for opera (important)
2021-11-01 00:00:00
osv
osv
chromedriver-94.0.4606.71-1.1 on GA media
2024-06-15 00:00:00
chromedriver-94.0.4606.81-1.1 on GA media
2024-06-15 00:00:00
openvas
openvas
openSUSE: Security Advisory for chromium (openSUSE-SU-2021:1350-1)
2021-10-13 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_21-2021-09) - Linux
2023-03-23 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop_21-2021-09) - Windows
2023-03-23 00:00:00
nessus
nessus
openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1350-1)
2021-10-13 00:00:00
openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1339-1)
2021-10-12 00:00:00
Microsoft Edge (Chromium) < 94.0.992.31 Multiple Vulnerabilities
2021-09-24 00:00:00
kaspersky
kaspersky
KLA12294 Multiple vulnerabilities in Google Chrome
2021-09-21 00:00:00
KLA12299 Multiple vulnerabilities in Microsoft Browser
2021-09-24 00:00:00
KLA12307 Multiple vulnerabilities in Microsoft Browser
2021-10-11 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2021-09-21 00:00:00
chromium -- multiple vulnerabilities
2021-10-07 00:00:00
chromium -- multiple vulnerabilities
2021-09-30 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-09-21 00:00:00
Stable Channel Update for Desktop
2021-10-07 00:00:00
Stable Channel Update for Desktop
2021-09-30 00:00:00
gentoo
gentoo
libjpeg-turbo: Multiple Vulnerabilities
2024-05-07 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: chromium-94.0.4606.81-1.fc33
2021-11-04 01:24:01
[SECURITY] Fedora 34 Update: chromium-94.0.4606.81-1.fc34
2021-10-15 19:23:21
[SECURITY] Fedora 35 Update: chromium-94.0.4606.81-1.fc35
2021-10-29 23:26:34
archlinux
archlinux
[ASA-202110-8] opera: multiple issues
2021-10-29 00:00:00
threatpost
threatpost
Google Emergency Update Fixes Two Chrome Zero Days
2021-09-30 22:38:50
mscve
mscve
Chromium: CVE-2021-37960 Inappropriate implementation in Blink graphics
2021-09-24 15:08:52
Chromium: CVE-2021-37964 Inappropriate implementation in ChromeOS Networking
2021-09-24 15:09:30
Chromium: CVE-2021-37963 Side-channel information leakage in DevTools
2021-09-24 15:09:21
cvelist
cvelist
CVE-2021-37960
2021-11-02 20:55:13
CVE-2021-37963
2021-10-08 21:30:38
CVE-2021-37962
2021-10-08 21:30:36
cnvd
cnvd
Google Chrome Blink graphics security bypass vulnerability
2021-09-22 00:00:00
Google Chrome DevTools Information Disclosure Vulnerability (CNVD-2021-73423)
2021-09-22 00:00:00
Google Chrome Task Manager code execution vulnerability
2021-09-22 00:00:00
nvd
nvd
CVE-2021-37960
2021-11-02 21:15:07
CVE-2021-37959
2021-10-08 22:15:07
CVE-2021-37962
2021-10-08 22:15:07
redhatcve
redhatcve
CVE-2021-37961
2022-05-21 00:00:41
CVE-2021-37959
2022-05-20 22:35:01
CVE-2021-37972
2021-09-23 15:06:25
veracode
veracode
Information Disclosure
2021-10-07 10:15:57
WIFI Impersonation
2021-10-07 10:15:59
Denial Of Service (DoS)
2021-10-07 10:15:51
cve
cve
CVE-2021-37964
2021-10-08 22:15:07
CVE-2021-37963
2021-10-08 22:15:07
CVE-2021-37960
2021-11-02 21:15:07
debiancve
debiancve
CVE-2021-37963
2021-10-08 22:15:07
CVE-2021-37961
2021-10-08 22:15:07
CVE-2021-37964
2021-10-08 22:15:07
ubuntucve
ubuntucve
CVE-2021-37962
2021-10-08 00:00:00
CVE-2021-37960
2021-09-22 00:00:00
CVE-2021-37963
2021-10-08 00:00:00
prion
prion
Design/Logic Flaw
2021-10-08 22:15:00
Design/Logic Flaw
2021-10-08 22:15:00
Information disclosure
2021-10-08 22:15:00
alpinelinux
alpinelinux
CVE-2021-37962
2021-10-08 22:15:07
CVE-2021-37971
2021-10-08 22:15:08
CVE-2021-37980
2021-11-02 21:15:07
cisa_kev
cisa_kev
Google Chromium Information Disclosure Vulnerability
2021-11-03 00:00:00
Google Chromium Portals Use-After-Free Vulnerability
2021-11-03 00:00:00
talos
talos
Google Chrome WebRTC RTPSenderVideoFrameTransformerDelegate memory corruption vulnerability
2022-01-10 00:00:00
hivepro
hivepro
Chrome’s eleventh zero-day vulnerability for the year 2021 has been patched
2021-09-26 08:02:45
malwarebytes
malwarebytes
Zero-day vulnerabilities in Chrome and Android exploited by commercial spyware
2022-05-24 09:55:59

EPSS

0.163

Percentile

96.1%

JSON
Related for OPENSUSE-SU-2021:1350-1
suse4osv2openvas13nessus18kaspersky9freebsd3chrome3gentoo1fedora6archlinux1threatpost1mscve15cvelist14cnvd13nvd13redhatcve3veracode14cve13debiancve14ubuntucve16prion13alpinelinux5cisa_kev2talos1hivepro1malwarebytes1