chromium is vulnerable to remote code execution. The vulnerability is caused by insufficient validation of untrusted input in V8 for x86_64, Google’s high-performance JavaScript and WebAssembly engine that interprets code embedded in web pages.
packetstormsecurity.com/files/162437/Google-Chrome-XOR-Typer-Out-Of-Bounds-Access-Remote-Code-Execution.html
chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop.html
crbug.com/1196683
lists.fedoraproject.org/archives/list/[email protected]/message/EAJ42L4JFPBJATCZ7MOZQTUDGV4OEHHG/
lists.fedoraproject.org/archives/list/[email protected]/message/U3GZ42MYPGD35V652ZPVPYYS7A7LVXVY/
lists.fedoraproject.org/archives/list/[email protected]/message/VUZBGKGVZADNA3I24NVG7HAYYUTOSN5A/
security-tracker.debian.org/tracker/CVE-2021-21220
security.gentoo.org/glsa/202104-08