FEDORA-EPEL-2020-414ebc38c5 — security update for chromium

chromium-80.0.3987.162-1.el7

FEDORA-EPEL-2020-414ebc38c5 created by spot 2 months ago for Fedora EPEL 7

obsolete

Update to 80.0.3987.162. Fixes the following CVEs:

CVE-2020-6450
CVE-2020-6451 • CVE-2020-6452

Update to 80.0.3987.149. Upstream says it fixes "13" security issues, but only lists these CVEs:

CVE-2020-6422: Use after free in WebGL
CVE-2020-6424: Use after free in media
CVE-2020-6425: Insufficient policy enforcement in extensions.
CVE-2020-6426: Inappropriate implementation in V8
CVE-2020-6427: Use after free in audio
CVE-2020-6428: Use after free in audio
CVE-2020-6429: Use after free in audio.
CVE-2019-20503: Out of bounds read in usersctplib.
CVE-2020-6449: Use after free in audio

This update has been submitted for testing by spot.

2 months ago

This update's test gating status has been changed to 'waiting'.

2 months ago

This update has obsoleted chromium-80.0.3987.149-1.el7, and has inherited its bugs and notes.

2 months ago

This update's test gating status has been changed to 'ignored'.

2 months ago

This update's test gating status has been changed to 'greenwave_failed'.

2 months ago

This update's test gating status has been changed to 'ignored'.

2 months ago

This update has been pushed to testing.

2 months ago

This update has been obsoleted by chromium-80.0.3987.163-1.el7.

2 months ago

Please login to add feedback.

Metadata

Type

security

Severity

high

Karma

Signed

Content Type

RPM

Test Gating

Builds

chromium-80.0.3987.162-1.el7

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

2 months ago

in testing

2 months ago

BZ#1815241 CVE-2020-6424 chromium-browser: Use after free in media

BZ#1815242 CVE-2020-6425 chromium-browser: Insufficient policy enforcement in extensions

BZ#1815243 CVE-2020-6426 chromium-browser: Inappropriate implementation in V8

BZ#1815244 CVE-2020-6427 chromium-browser: Use after free in audio

BZ#1815245 CVE-2020-6428 chromium-browser: Use after free in audio

BZ#1815247 CVE-2020-6429 chromium-browser: Use after free in audio

BZ#1815248 CVE-2020-6449 chromium-browser: Use after free in audio

BZ#1815255 CVE-2020-6424 CVE-2020-6425 CVE-2020-6426 CVE-2020-6427 CVE-2020-6428 CVE-2020-6429 CVE-2020-6449 chromium: various flaws [epel-all]

BZ#1815259 CVE-2020-6422 chromium-browser: Use after free in WebGL

BZ#1815265 CVE-2020-6422 chromium: chromium-browser: Use after free in WebGL [epel-all]

BZ#1820155 CVE-2020-6450 chromium-browser: Use after free in WebAudio

BZ#1820156 CVE-2020-6451 chromium-browser: Use after free in WebAudio

BZ#1820157 CVE-2020-6452 chromium-browser: Heap buffer overflow in media

BZ#1820160 CVE-2020-6450 CVE-2020-6451 CVE-2020-6452 chromium: various flaws [epel-all]

chromium-80.0.3987.162-1.el7

Automated Test Results