rpm package
suse/chromium&distro=SUSE Package Hub 15 SP3
pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3
Vulnerabilities (505)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-30614 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip | |
| CVE-2021-30613 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30613 Use after free in Base internals | |
| CVE-2021-30612 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30612 Use after free in WebRTC | |
| CVE-2021-30611 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30611 Use after free in WebRTC | |
| CVE-2021-30610 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30610 Use after free in Extensions API | |
| CVE-2021-30609 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30609 Use after free in Sign-In | |
| CVE-2021-30608 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30608 Use after free in Web Share | |
| CVE-2021-30607 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30607 Use after free in Permissions | |
| CVE-2021-30606 | Hig | 8.8 | < 93.0.4577.82-bp153.2.28.1 | 93.0.4577.82-bp153.2.28.1 | Sep 3, 2021 | Chromium: CVE-2021-30606 Use after free in Blink | |
| CVE-2021-30604 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Use after free in ANGLE in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30603 | Hig | 7.5 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Data race in WebAudio in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30602 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Use after free in WebRTC in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to visit a malicious website to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30601 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Use after free in Extensions API in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30600 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Use after free in Printing in Google Chrome prior to 92.0.4515.159 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30599 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. | |
| CVE-2021-30598 | Hig | 8.8 | < 92.0.4515.159-bp153.2.25.1 | 92.0.4515.159-bp153.2.25.1 | Aug 26, 2021 | Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. | |
| CVE-2021-30597 | Med | 6.8 | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 26, 2021 | Use after free in Browser UI in Google Chrome on Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device. | |
| CVE-2021-30596 | Med | 4.3 | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 26, 2021 | Incorrect security UI in Navigation in Google Chrome on Android prior to 92.0.4515.131 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. | |
| CVE-2021-30594 | Med | 6.8 | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 26, 2021 | Use after free in Page Info UI in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device. | |
| CVE-2021-30593 | Hig | 8.1 | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 26, 2021 | Out of bounds read in Tab Strip in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted HTML page. |
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30614 Heap buffer overflow in TabStrip
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30613 Use after free in Base internals
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30612 Use after free in WebRTC
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30611 Use after free in WebRTC
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30610 Use after free in Extensions API
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30609 Use after free in Sign-In
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30608 Use after free in Web Share
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30607 Use after free in Permissions
- affected < 93.0.4577.82-bp153.2.28.1fixed 93.0.4577.82-bp153.2.28.1
Chromium: CVE-2021-30606 Use after free in Blink
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Use after free in ANGLE in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Data race in WebAudio in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Use after free in WebRTC in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to visit a malicious website to potentially exploit heap corruption via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Use after free in Extensions API in Google Chrome prior to 92.0.4515.159 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Use after free in Printing in Google Chrome prior to 92.0.4515.159 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
- affected < 92.0.4515.159-bp153.2.25.1fixed 92.0.4515.159-bp153.2.25.1
Type confusion in V8 in Google Chrome prior to 92.0.4515.159 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
- affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Use after free in Browser UI in Google Chrome on Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device.
- affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Incorrect security UI in Navigation in Google Chrome on Android prior to 92.0.4515.131 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page.
- affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Use after free in Page Info UI in Google Chrome prior to 92.0.4515.131 allowed a remote attacker to potentially exploit heap corruption via physical access to the device.
- affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Out of bounds read in Tab Strip in Google Chrome prior to 92.0.4515.131 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory read via a crafted HTML page.
Page 22 of 26