Linux Security
    Linux Security
    Linux Security

    openSUSE: 2020:1215-1: important: chromium

    Date
    217
    Posted By
    An update that fixes 14 vulnerabilities is now available.
       openSUSE Security Update: Security update for chromium
    ______________________________________________________________________________
    
    Announcement ID:    openSUSE-SU-2020:1215-1
    Rating:             important
    References:         #1174497 #1175044 #1175085 
    Cross-References:   CVE-2020-6542 CVE-2020-6543 CVE-2020-6544
                        CVE-2020-6545 CVE-2020-6546 CVE-2020-6547
                        CVE-2020-6548 CVE-2020-6549 CVE-2020-6550
                        CVE-2020-6551 CVE-2020-6552 CVE-2020-6553
                        CVE-2020-6554 CVE-2020-6555
    Affected Products:
                        openSUSE Backports SLE-15-SP2
    ______________________________________________________________________________
    
       An update that fixes 14 vulnerabilities is now available.
    
    Description:
    
       This update for chromium fixes the following issues:
    
       - Chromium updated to 84.0.4147.125 (boo#1175085)
         * CVE-2020-6542: Use after free in ANGLE
         * CVE-2020-6543: Use after free in task scheduling
         * CVE-2020-6544: Use after free in media
         * CVE-2020-6545: Use after free in audio
         * CVE-2020-6546: Inappropriate implementation in installer
         * CVE-2020-6547: Incorrect security UI in media
         * CVE-2020-6548: Heap buffer overflow in Skia
         * CVE-2020-6549: Use after free in media
         * CVE-2020-6550: Use after free in IndexedDB
         * CVE-2020-6551: Use after free in WebXR
         * CVE-2020-6552: Use after free in Blink
         * CVE-2020-6553: Use after free in offline mode
         * CVE-2020-6554: Use after free in extensions
         * CVE-2020-6555: Out of bounds read in WebGL
         * Various fixes from internal audits, fuzzing and other initiatives
    
       - Disable wayland everywhere as it breaks headless and middle mouse copy
         everywhere: boo#1174497 boo#1175044
    
       This update was imported from the openSUSE:Leap:15.2:Update update project.
    
    
    Patch Instructions:
    
       To install this openSUSE Security Update use the SUSE recommended installation methods
       like YaST online_update or "zypper patch".
    
       Alternatively you can run the command listed for your product:
    
       - openSUSE Backports SLE-15-SP2:
    
          zypper in -t patch openSUSE-2020-1215=1
    
    
    
    Package List:
    
       - openSUSE Backports SLE-15-SP2 (aarch64 x86_64):
    
          chromedriver-84.0.4147.125-bp152.2.13.1
          chromium-84.0.4147.125-bp152.2.13.1
    
    
    References:
    
       https://www.suse.com/security/cve/CVE-2020-6542.html
       https://www.suse.com/security/cve/CVE-2020-6543.html
       https://www.suse.com/security/cve/CVE-2020-6544.html
       https://www.suse.com/security/cve/CVE-2020-6545.html
       https://www.suse.com/security/cve/CVE-2020-6546.html
       https://www.suse.com/security/cve/CVE-2020-6547.html
       https://www.suse.com/security/cve/CVE-2020-6548.html
       https://www.suse.com/security/cve/CVE-2020-6549.html
       https://www.suse.com/security/cve/CVE-2020-6550.html
       https://www.suse.com/security/cve/CVE-2020-6551.html
       https://www.suse.com/security/cve/CVE-2020-6552.html
       https://www.suse.com/security/cve/CVE-2020-6553.html
       https://www.suse.com/security/cve/CVE-2020-6554.html
       https://www.suse.com/security/cve/CVE-2020-6555.html
       https://bugzilla.suse.com/1174497
       https://bugzilla.suse.com/1175044
       https://bugzilla.suse.com/1175085
    
    -- 
    

    Advisories

    LinuxSecurity Poll

    Tails is the most secure Linux distro out there.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/41-ubuntu-is-a-more-secure-distro-than-fedora?task=poll.vote&format=json
    41
    radio
    [{"id":"142","title":"Yes - Tails get my vote!","votes":"2","type":"x","order":"1","pct":100,"resources":[]},{"id":"143","title":"Nope - Parrot OS has surpassed Tails in its security and privacy.","votes":"0","type":"x","order":"2","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.