Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 33: 2021-78b9d84299 Critical: Chromium Buffer Overflow

fedora
Calendar Grey September 12, 2021
Dist Fedora Esm H88
The rollout of Chromium 93 introduces essential security updates and optimizations for Fedora users. Discover the new features and fixes that come with this update.
Update to Chromium 93

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update to Chromium 93. There have been ... a few security fixes since the last

Fedora chromium update. This update fixes the following CVEs: CVE-2021-30565

CVE-2021-30566 CVE-2021-30567 CVE-2021-30568 CVE-2021-30569 CVE-2021-30571

CVE-2021-30572 CVE-2021-30573 CVE-2021-30574 CVE-2021-30575 CVE-2021-30576

CVE-2021-30577 CVE-2021-30578 CVE-2021-30579 CVE-2021-30580 CVE-2021-30581

CVE-2021-30582 CVE-2021-30583 CVE-2021-30584 CVE-2021-30585 CVE-2021-30586

CVE-2021-30587 CVE-2021-30588 CVE-2021-30589 CVE-2021-30590 CVE-2021-30591

CVE-2021-30592 CVE-2021-30593 CVE-2021-30594 CVE-2021-30596 CVE-2021-30597

CVE-2021-30598 CVE-2021-30599 CVE-2021-30600 CVE-2021-30601 CVE-2021-30602

CVE-2021-30603 CVE-2021-30604 CVE-2021-30606 CVE-2021-30607 CVE-2021-30608

CVE-2021-30609 CVE-2021-30610 CVE-2021-30611 CVE-2021-30612 CVE-2021-30613

CVE-2021-30614 CVE-2021-30615 CVE-2021-30616 CVE-2021-30617 CVE-2021-30618

CVE-2021-30619 CVE-2021-30620 CVE-2021-30621 CVE-2021-30622 CVE-2021-30623

CVE-2021-30624 This build also properly handles clone3, which makes it useful

again on Fedora 35+.

* Thu Sep 2 2021 Tom Callaway - 93.0.4577.63-1

- update to 93.0.4577.63

* Mon Aug 30 2021 Tom Callaway - 92.0.4515.159-2

- disable userfaultd code in epel8

- include crashpad_handler (it works a lot better when it doesn't immediately crash because of this missing file)

* Tue Aug 17 2021 Tom Callaway - 92.0.4515.159-1

- update to 92.0.4515.159

* Mon Aug 16 2021 Tom Callaway - 92.0.4515.131-1

- update to 92.0.4515.131

- apply upstream fix for clone3 crash

* Mon Jul 26 2021 Tom Callaway - 92.0.4515.107-1

- update to 92.0.4515.107

- drop python2 deps (finally)

* Wed Jul 21 2021 Fedora Release Engineering - 91.0.4472.164-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild

[ 1 ] Bug #1984655 - CVE-2021-30565 chromium-browser: Out of bounds write in Tab Groups

https://bugzilla.redhat.com/show_bug.cgi?id=1984655

[ 2 ] Bug #1984656 - CVE-2021-30566 chromium-browser: Stack buffer overflow in Printing

https://bugzilla.redhat.com/show_bug.cgi?id=1984656

[ 3 ] Bug #1984657 - CVE-2021-30567 chromium-browser: Use after free in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=1984657

[ 4 ] Bug #1984658 - CVE-2021-30568 chromium-browser: Heap buffer overflow in WebGL

https://bugzilla.redhat.com/show_bug.cgi?id=1984658

[ 5 ] Bug #1984659 - CVE-2021-30569 chromium-browser: Use after free in sqlite

https://bugzilla.redhat.com/show_bug.cgi?id=1984659

[ 6 ] Bug #1984660 - CVE-2021-30571 chromium-browser: Insufficient policy enforcement in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=1984660

[ 7 ] Bug #1984661 - CVE-2021-30572 chromium-browser: Use after free in Autofill

https://bugzilla.redhat.com/show_bug.cgi?id=1984661

[ 8 ] Bug #1984662 - CVE-2021-30573 chromium-browser: Use after free in GPU

https://bugzilla.redhat.com/show_bug.cgi?id=1984662

[ 9 ] Bug #1984663 - CVE-2021-30574 chromium-browser: Use after free in protocol handling

https://bugzilla.redhat.com/show_bug.cgi?id=1984663

[ 10 ] Bug #1984664 - CVE-2021-30575 chromium-browser: Out of bounds read in Autofill

https://bugzilla.redhat.com/show_bug.cgi?id=1984664

[ 11 ] Bug #1984665 - CVE-2021-30576 chromium-browser: Use after free in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=1984665

[ 12 ] Bug #1984666 - CVE-2021-30577 chromium-browser: Insufficient policy enforcement in Installer

https://bugzilla.redhat.com/show_bug.cgi?id=1984666

[ 13 ] Bug #1984667 - CVE-2021-30578 chromium-browser: Uninitialized Use in Media

https://bugzilla.redhat.com/show_bug.cgi?id=1984667

[ 14 ] Bug #1984668 - CVE-2021-30579 chromium-browser: Use after free in UI framework

https://bugzilla.redhat.com/show_bug.cgi?id=1984668

[ 15 ] Bug #1984669 - CVE-2021-30580 chromium-browser: Insufficient policy enforcement in Android intents

https://bugzilla.redhat.com/show_bug.cgi?id=1984669

[ 16 ] Bug #1984670 - CVE-2021-30581 chromium-browser: Use after free in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=1984670

[ 17 ] Bug #1984671 - CVE-2021-30582 chromium-browser: Inappropriate implementation in Animation

https://bugzilla.redhat.com/show_bug.cgi?id=1984671

[ 18 ] Bug #1984672 - CVE-2021-30583 chromium-browser: Insufficient policy enforcement in image handling on Windows

https://bugzilla.redhat.com/show_bug.cgi?id=1984672

[ 19 ] Bug #1984673 - CVE-2021-30584 chromium-browser: Incorrect security UI in Downloads

https://bugzilla.redhat.com/show_bug.cgi?id=1984673

[ 20 ] Bug #1984674 - CVE-2021-30585 chromium-browser: Use after free in sensor handling

https://bugzilla.redhat.com/show_bug.cgi?id=1984674

[ 21 ] Bug #1984675 - CVE-2021-30586 chromium-browser: Use after free in dialog box handling on Windows

https://bugzilla.redhat.com/show_bug.cgi?id=1984675

[ 22 ] Bug #1984676 - CVE-2021-30587 chromium-browser: Inappropriate implementation in Compositing on Windows

https://bugzilla.redhat.com/show_bug.cgi?id=1984676

[ 23 ] Bug #1984677 - CVE-2021-30588 chromium-browser: Type Confusion in V8

https://bugzilla.redhat.com/show_bug.cgi?id=1984677

[ 24 ] Bug #1984678 - CVE-2021-30589 chromium-browser: Insufficient validation of untrusted input in Sharing

https://bugzilla.redhat.com/show_bug.cgi?id=1984678

[ 25 ] Bug #1989344 - CVE-2021-30590 chromium-browser: Heap buffer overflow in Bookmarks

https://bugzilla.redhat.com/show_bug.cgi?id=1989344

[ 26 ] Bug #1989345 - CVE-2021-30591 chromium-browser: Use after free in File System API

https://bugzilla.redhat.com/show_bug.cgi?id=1989345

[ 27 ] Bug #1989346 - CVE-2021-30592 chromium-browser: Out of bounds write in Tab Groups

https://bugzilla.redhat.com/show_bug.cgi?id=1989346

[ 28 ] Bug #1989347 - CVE-2021-30593 chromium-browser: Out of bounds read in Tab Strip

https://bugzilla.redhat.com/show_bug.cgi?id=1989347

[ 29 ] Bug #1989348 - CVE-2021-30594 chromium-browser: Use after free in Page Info UI

https://bugzilla.redhat.com/show_bug.cgi?id=1989348

[ 30 ] Bug #1989349 - CVE-2021-30596 chromium-browser: Incorrect security UI in Navigation

https://bugzilla.redhat.com/show_bug.cgi?id=1989349

[ 31 ] Bug #1989350 - CVE-2021-30597 chromium-browser: Use after free in Browser UI

https://bugzilla.redhat.com/show_bug.cgi?id=1989350

[ 32 ] Bug #1994197 - CVE-2021-30598 chromium-browser: Type Confusion in V8

https://bugzilla.redhat.com/show_bug.cgi?id=1994197

[ 33 ] Bug #1994198 - CVE-2021-30599 chromium-browser: Type Confusion in V8

https://bugzilla.redhat.com/show_bug.cgi?id=1994198

[ 34 ] Bug #1994199 - CVE-2021-30600 chromium-browser: Use after free in Printing

https://bugzilla.redhat.com/show_bug.cgi?id=1994199

[ 35 ] Bug #1994200 - CVE-2021-30601 chromium-browser: Use after free in Extensions API

https://bugzilla.redhat.com/show_bug.cgi?id=1994200

[ 36 ] Bug #1994201 - CVE-2021-30602 chromium-browser: Use after free in WebRTC

https://bugzilla.redhat.com/show_bug.cgi?id=1994201

[ 37 ] Bug #1994202 - CVE-2021-30603 chromium-browser: Race in WebAudio

https://bugzilla.redhat.com/show_bug.cgi?id=1994202

[ 38 ] Bug #1994203 - CVE-2021-30604 chromium-browser: Use after free in ANGLE

https://bugzilla.redhat.com/show_bug.cgi?id=1994203

[ 39 ] Bug #2000156 - CVE-2021-30606 chromium-browser: Use after free in Blink

https://bugzilla.redhat.com/show_bug.cgi?id=2000156

[ 40 ] Bug #2000157 - CVE-2021-30607 chromium-browser: Use after free in Permissions

https://bugzilla.redhat.com/show_bug.cgi?id=2000157

[ 41 ] Bug #2000158 - CVE-2021-30608 chromium-browser: Use after free in Web Share

https://bugzilla.redhat.com/show_bug.cgi?id=2000158

[ 42 ] Bug #2000159 - CVE-2021-30609 chromium-browser: Use after free in Sign-In

https://bugzilla.redhat.com/show_bug.cgi?id=2000159

[ 43 ] Bug #2000160 - CVE-2021-30610 chromium-browser: Use after free in Extensions API

https://bugzilla.redhat.com/show_bug.cgi?id=2000160

[ 44 ] Bug #2000162 - CVE-2021-30611 chromium-browser: Use after free in WebRTC

https://bugzilla.redhat.com/show_bug.cgi?id=2000162

[ 45 ] Bug #2000163 - CVE-2021-30612 chromium-browser: Use after free in WebRTC

https://bugzilla.redhat.com/show_bug.cgi?id=2000163

[ 46 ] Bug #2000165 - CVE-2021-30613 chromium-browser: Use after free in Base internals

https://bugzilla.redhat.com/show_bug.cgi?id=2000165

[ 47 ] Bug #2000166 - CVE-2021-30614 chromium-browser: Heap buffer overflow in TabStrip

https://bugzilla.redhat.com/show_bug.cgi?id=2000166

[ 48 ] Bug #2000167 - CVE-2021-30615 chromium-browser: Cross-origin data leak in Navigation

https://bugzilla.redhat.com/show_bug.cgi?id=2000167

[ 49 ] Bug #2000168 - CVE-2021-30616 chromium-browser: Use after free in Media

https://bugzilla.redhat.com/show_bug.cgi?id=2000168

[ 50 ] Bug #2000169 - CVE-2021-30617 chromium-browser: Policy bypass in Blink

https://bugzilla.redhat.com/show_bug.cgi?id=2000169

[ 51 ] Bug #2000170 - CVE-2021-30618 chromium-browser: Inappropriate implementation in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=2000170

[ 52 ] Bug #2000171 - CVE-2021-30619 chromium-browser: UI Spoofing in Autofill

https://bugzilla.redhat.com/show_bug.cgi?id=2000171

[ 53 ] Bug #2000172 - CVE-2021-30620 chromium-browser: Insufficient policy enforcement in Blink

https://bugzilla.redhat.com/show_bug.cgi?id=2000172

[ 54 ] Bug #2000173 - CVE-2021-30621 chromium-browser: UI Spoofing in Autofill

https://bugzilla.redhat.com/show_bug.cgi?id=2000173

[ 55 ] Bug #2000174 - CVE-2021-30622 chromium-browser: Use after free in WebApp Installs

https://bugzilla.redhat.com/show_bug.cgi?id=2000174

[ 56 ] Bug #2000175 - CVE-2021-30623 chromium-browser: Use after free in Bookmarks

https://bugzilla.redhat.com/show_bug.cgi?id=2000175

[ 57 ] Bug #2000176 - CVE-2021-30624 chromium-browser: Use after free in Autofill

https://bugzilla.redhat.com/show_bug.cgi?id=2000176

su -c 'dnf upgrade --advisory FEDORA-2021-78b9d84299' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Topics%20covered

Topics Covered

security advisory security update buffer overflow critical Fedora DoS Chromium

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 33
Version: 93.0.4577.63
Release: 1.fc33
URL: https://www.chromium.org/Home/
Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics%20covered

Topics Covered

security advisory security update buffer overflow critical Fedora DoS Chromium

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here