Arch Linux: ASA-202003-1 High: Access Restriction Bypass in Chromium
Mar 05, 2020
•
LinuxSecurity Advisories
1 min read
Topics Covered
The package chromium before version 80.0.3987.132-1 is vulnerable to access restriction bypass.
Arch Linux Security Advisory ASA-202003-1 ======================================== Severity: High Date : 2020-03-04 CVE-ID : CVE-2020-6420 Package : chromium Type : access restriction bypass Remote : Yes Link : https://security.archlinux.org/AVG-1107 Summary ====== The package chromium before version 80.0.3987.132-1 is vulnerable to access restriction bypass. Resolution ========= Upgrade to 80.0.3987.132-1. # pacman -Syu "chromium>=80.0.3987.132-1" The problem has been fixed upstream in version 80.0.3987.132. Workaround ========= None. Description ========== An insufficient policy enforcement issue has been found in the media component of chromium before 80.0.3987.132. Impact ===== A remote attacker can bypass security restrictions. References ========= https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop.html https://security.archlinux.org/CVE-2020-6420
PREVIOUS
NEXT
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!