rpm package
suse/chromium&distro=SUSE Package Hub 15 SP3
pkg:rpm/suse/chromium&distro=SUSE%20Package%20Hub%2015%20SP3
Vulnerabilities (505)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-30567 | — | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 3, 2021 | Use after free in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to open DevTools to potentially exploit heap corruption via specific user gesture. | ||
| CVE-2021-30566 | — | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 3, 2021 | Stack buffer overflow in Printing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker who had compromised the renderer process to potentially exploit stack corruption via a crafted HTML page. | ||
| CVE-2021-30565 | — | < 92.0.4515.131-bp153.2.19.1 | 92.0.4515.131-bp153.2.19.1 | Aug 3, 2021 | Out of bounds write in Tab Groups in Google Chrome on Linux and ChromeOS prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page. | ||
| CVE-2021-30564 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30563 | — | KEV | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30562 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Use after free in WebSerial in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30561 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30559 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30541 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Use after free in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30560 | — | < 91.0.4472.164-bp153.2.16.1 | 91.0.4472.164-bp153.2.16.1 | Aug 3, 2021 | Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30557 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jul 2, 2021 | Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30556 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jul 2, 2021 | Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30555 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jul 2, 2021 | Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture. | ||
| CVE-2021-30554 | — | KEV | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jul 2, 2021 | Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30553 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Use after free in Network service in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30552 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30551 | — | KEV | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Type confusion in V8 in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | |
| CVE-2021-30550 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Use after free in Accessibility in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30549 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Use after free in Spell check in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. | ||
| CVE-2021-30548 | — | < 91.0.4472.114-bp153.2.13.1 | 91.0.4472.114-bp153.2.13.1 | Jun 15, 2021 | Use after free in Loader in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
- CVE-2021-30567Aug 3, 2021affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Use after free in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to open DevTools to potentially exploit heap corruption via specific user gesture.
- CVE-2021-30566Aug 3, 2021affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Stack buffer overflow in Printing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker who had compromised the renderer process to potentially exploit stack corruption via a crafted HTML page.
- CVE-2021-30565Aug 3, 2021affected < 92.0.4515.131-bp153.2.19.1fixed 92.0.4515.131-bp153.2.19.1
Out of bounds write in Tab Groups in Google Chrome on Linux and ChromeOS prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to perform an out of bounds memory write via a crafted HTML page.
- CVE-2021-30564Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Heap buffer overflow in WebXR in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30562Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Use after free in WebSerial in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30561Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Type Confusion in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30559Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Out of bounds write in ANGLE in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30541Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Use after free in V8 in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30560Aug 3, 2021affected < 91.0.4472.164-bp153.2.16.1fixed 91.0.4472.164-bp153.2.16.1
Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30557Jul 2, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30556Jul 2, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30555Jul 2, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture.
- affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30553Jun 15, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Network service in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30552Jun 15, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Extensions in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Type confusion in V8 in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30550Jun 15, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Accessibility in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30549Jun 15, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Spell check in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
- CVE-2021-30548Jun 15, 2021affected < 91.0.4472.114-bp153.2.13.1fixed 91.0.4472.114-bp153.2.13.1
Use after free in Loader in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Page 24 of 26