Fedora 35: FEDORA-2021-591b3a2af0 Critical Memory Access Issues

fedora

October 29, 2021

Update to 94.0.4606.61

Summary

Chromium is an open-source web browser, powered by WebKit (Blink).

Update to 94.0.4606.61. Fixes a big pile of security issues: CVE-2021-30542

CVE-2021-30543 CVE-2021-30558 CVE-2021-30625 CVE-2021-30626 CVE-2021-30627

CVE-2021-30628 CVE-2021-30629 CVE-2021-30630 CVE-2021-30631 CVE-2021-30632

CVE-2021-30633 CVE-2021-37972 CVE-2021-37956 CVE-2021-37957 CVE-2021-37958

CVE-2021-37959 CVE-2021-37960 CVE-2021-37961 CVE-2021-37962 CVE-2021-37963

CVE-2021-37964 CVE-2021-37965 CVE-2021-37966 CVE-2021-37967 CVE-2021-37968

CVE-2021-37969 CVE-2021-37970 CVE-2021-37971 CVE-2021-37973

* Fri Sep 24 2021 Tom Callaway - 94.0.4606.61-1

- update to 94.0.4606.61

* Thu Sep 23 2021 Tom Callaway - 94.0.4606.54-1

- update to 94.0.4606.54

* Mon Sep 20 2021 Tom Callaway - 93.0.4577.82-2

- add fix for harfbuzz v3 (thanks to Jan Beich @ FreeBSD)

* Thu Sep 16 2021 Tom Callaway - 93.0.4577.82-1

- update to 93.0.4577.82

[ 1 ] Bug #2001877 - CVE-2021-30542 chromium-browser: Use after free in Tab Strip

https://bugzilla.redhat.com/show_bug.cgi?id=2001877

[ 2 ] Bug #2001879 - CVE-2021-30543 chromium-browser: Use after free in Tab Strip

https://bugzilla.redhat.com/show_bug.cgi?id=2001879

[ 3 ] Bug #2001881 - CVE-2021-30558 chromium-browser: Insufficient policy enforcement in content security policy

https://bugzilla.redhat.com/show_bug.cgi?id=2001881

[ 4 ] Bug #2004087 - CVE-2021-30625 chromium-browser: Use after free in Selection API

https://bugzilla.redhat.com/show_bug.cgi?id=2004087

[ 5 ] Bug #2004088 - CVE-2021-30626 chromium-browser: Out of bounds memory access in ANGLE

https://bugzilla.redhat.com/show_bug.cgi?id=2004088

[ 6 ] Bug #2004089 - CVE-2021-30627 chromium-browser: Type Confusion in Blink layout

https://bugzilla.redhat.com/show_bug.cgi?id=2004089

[ 7 ] Bug #2004090 - CVE-2021-30628 chromium-browser: Stack buffer overflow in ANGLE

https://bugzilla.redhat.com/show_bug.cgi?id=2004090

[ 8 ] Bug #2004091 - CVE-2021-30629 chromium-browser: Use after free in Permissions

https://bugzilla.redhat.com/show_bug.cgi?id=2004091

[ 9 ] Bug #2004092 - CVE-2021-30630 chromium-browser: Inappropriate implementation in Blink

https://bugzilla.redhat.com/show_bug.cgi?id=2004092

[ 10 ] Bug #2004093 - CVE-2021-30631 chromium-browser: Type Confusion in Blink layout

https://bugzilla.redhat.com/show_bug.cgi?id=2004093

[ 11 ] Bug #2004095 - CVE-2021-30632 chromium-browser: Out of bounds write in V8

https://bugzilla.redhat.com/show_bug.cgi?id=2004095

[ 12 ] Bug #2004096 - CVE-2021-30633 chromium-browser: Use after free in Indexed DB API

https://bugzilla.redhat.com/show_bug.cgi?id=2004096

[ 13 ] Bug #2006914 - CVE-2021-37956 chromium-browser: Use after free in Offline use

https://bugzilla.redhat.com/show_bug.cgi?id=2006914

[ 14 ] Bug #2006915 - CVE-2021-37957 chromium-browser: Use after free in WebGPU

https://bugzilla.redhat.com/show_bug.cgi?id=2006915

[ 15 ] Bug #2006916 - CVE-2021-37958 chromium-browser: Inappropriate implementation in Navigation

https://bugzilla.redhat.com/show_bug.cgi?id=2006916

[ 16 ] Bug #2006917 - CVE-2021-37959 chromium-browser: Use after free in Task Manager

https://bugzilla.redhat.com/show_bug.cgi?id=2006917

[ 17 ] Bug #2006918 - CVE-2021-37960 chromium-browser: Inappropriate implementation in Blink graphics

https://bugzilla.redhat.com/show_bug.cgi?id=2006918

[ 18 ] Bug #2006919 - CVE-2021-37961 chromium-browser: Use after free in Tab Strip

https://bugzilla.redhat.com/show_bug.cgi?id=2006919

[ 19 ] Bug #2006920 - CVE-2021-37962 chromium-browser: Use after free in Performance Manager

https://bugzilla.redhat.com/show_bug.cgi?id=2006920

[ 20 ] Bug #2006921 - CVE-2021-37963 chromium-browser: Side-channel information leakage in DevTools

https://bugzilla.redhat.com/show_bug.cgi?id=2006921

[ 21 ] Bug #2006922 - CVE-2021-37964 chromium-browser: Inappropriate implementation in ChromeOS Networking

https://bugzilla.redhat.com/show_bug.cgi?id=2006922

[ 22 ] Bug #2006923 - CVE-2021-37965 chromium-browser: Inappropriate implementation in Background Fetch API

https://bugzilla.redhat.com/show_bug.cgi?id=2006923

[ 23 ] Bug #2006924 - CVE-2021-37966 chromium-browser: Inappropriate implementation in Compositing

https://bugzilla.redhat.com/show_bug.cgi?id=2006924

[ 24 ] Bug #2006925 - CVE-2021-37967 chromium-browser: Inappropriate implementation in Background Fetch API

https://bugzilla.redhat.com/show_bug.cgi?id=2006925

[ 25 ] Bug #2006926 - CVE-2021-37968 chromium-browser: Inappropriate implementation in Background Fetch API

https://bugzilla.redhat.com/show_bug.cgi?id=2006926

[ 26 ] Bug #2006927 - CVE-2021-37969 chromium-browser: Inappropriate implementation in Google Updater

https://bugzilla.redhat.com/show_bug.cgi?id=2006927

[ 27 ] Bug #2006928 - CVE-2021-37970 chromium-browser: Use after free in File System API

https://bugzilla.redhat.com/show_bug.cgi?id=2006928

[ 28 ] Bug #2006929 - CVE-2021-37971 chromium-browser: Incorrect security UI in Web Browser UI

https://bugzilla.redhat.com/show_bug.cgi?id=2006929

[ 29 ] Bug #2006930 - CVE-2021-37972 libjpeg-turbo: Out-of-bounds read in 64-bit SSE2 Huffman encoder

https://bugzilla.redhat.com/show_bug.cgi?id=2006930

[ 30 ] Bug #2007725 - CVE-2021-37973 chromium-browser: Use after free in Portals

https://bugzilla.redhat.com/show_bug.cgi?id=2007725

su -c 'dnf upgrade --advisory FEDORA-2021-591b3a2af0' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Topics Covered

security advisory fedora critical memory access security issues chromium

Change Log

References

Update Instructions

Severity

critical

Lowest

Low

Medium

High

Critical

Product: Fedora 35

Version: 94.0.4606.61

Release: 1.fc35

URL: https://www.chromium.org/Home/

Summary: A WebKit (Blink) powered web browser that Google doesn't want you to use

Topics Covered

security advisory fedora critical memory access security issues chromium

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Fedora 35: FEDORA-2021-591b3a2af0 Critical Memory Access Issues

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Fedora 35: FEDORA-2021-591b3a2af0 Critical Memory Access Issues

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!