stable

chromium-81.0.4044.138-1.el7

FEDORA-EPEL-2020-cd30b5b1cf created by spot 4 years ago for Fedora EPEL 7

This update fixes the following security vulnerabilities:

  • CVE-2020-6464
  • CVE-2020-6461
  • CVE-2020-6462

Will Chromium stop releasing updates long enough for one to make it to EPEL stable? Probably not.

This one fixes: CVE-2020-6458 CVE-2020-6459 CVE-2020-6460

Fix dependency issue introduced when switching from a "shared" build to a "static" build.

A new major version of Chromium without any security bugs! Just kidding. Here's the CVE list:

CVE-2020-6454 CVE-2020-6423 CVE-2020-6455 CVE-2020-6430 CVE-2020-6456 CVE-2020-6431 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436 CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440 CVE-2020-6441 CVE-2020-6442 CVE-2020-6443 CVE-2020-6444 CVE-2020-6445 CVE-2020-6446 CVE-2020-6447 CVE-2020-6448 CVE-2020-6432 CVE-2020-6457

Oh, and this build switches over to a static build, so the chromium-libs and chromium-libs-media subpackages are now obsolete, but it should be slightly better for performance.

Bugfix release from Google for 80.0.3987.162.

Update to 80.0.3987.162. Fixes the following CVEs:

  • CVE-2020-6450
  • CVE-2020-6451 • CVE-2020-6452

Update to 80.0.3987.149. Upstream says it fixes "13" security issues, but only lists these CVEs:

  • CVE-2020-6422: Use after free in WebGL
  • CVE-2020-6424: Use after free in media
  • CVE-2020-6425: Insufficient policy enforcement in extensions.
  • CVE-2020-6426: Inappropriate implementation in V8
  • CVE-2020-6427: Use after free in audio
  • CVE-2020-6428: Use after free in audio
  • CVE-2020-6429: Use after free in audio.
  • CVE-2019-20503: Out of bounds read in usersctplib.
  • CVE-2020-6449: Use after free in audio

This update has been submitted for testing by spot.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update has obsoleted chromium-81.0.4044.122-1.el7, and has inherited its bugs and notes.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been pushed to testing.

4 years ago

This update can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
Builds
1
chromium-81.0.4044.138-1.el7
BZ#1815241 CVE-2020-6424 chromium-browser: Use after free in media
0
0
BZ#1815242 CVE-2020-6425 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1815243 CVE-2020-6426 chromium-browser: Inappropriate implementation in V8
0
0
BZ#1815244 CVE-2020-6427 chromium-browser: Use after free in audio
0
0
BZ#1815245 CVE-2020-6428 chromium-browser: Use after free in audio
0
0
BZ#1815247 CVE-2020-6429 chromium-browser: Use after free in audio
0
0
BZ#1815248 CVE-2020-6449 chromium-browser: Use after free in audio
0
0
BZ#1815255 CVE-2020-6424 CVE-2020-6425 CVE-2020-6426 CVE-2020-6427 CVE-2020-6428 CVE-2020-6429 CVE-2020-6449 chromium: various flaws [epel-all]
0
0
BZ#1815259 CVE-2020-6422 chromium-browser: Use after free in WebGL
0
0
BZ#1815265 CVE-2020-6422 chromium: chromium-browser: Use after free in WebGL [epel-all]
0
0
BZ#1820155 CVE-2020-6450 chromium-browser: Use after free in WebAudio
0
0
BZ#1820156 CVE-2020-6451 chromium-browser: Use after free in WebAudio
0
0
BZ#1820157 CVE-2020-6452 chromium-browser: Heap buffer overflow in media
0
0
BZ#1820160 CVE-2020-6450 CVE-2020-6451 CVE-2020-6452 chromium: various flaws [epel-all]
0
0
BZ#1822604 CVE-2020-6454 chromium-browser: Use after free in extensions
0
0
BZ#1822605 CVE-2020-6423 chromium-browser: Use after free in audio
0
0
BZ#1822606 CVE-2020-6455 chromium-browser: Out of bounds read in WebSQL
0
0
BZ#1822607 CVE-2020-6430 chromium-browser: Type Confusion in V8
0
0
BZ#1822608 CVE-2020-6456 chromium-browser: Insufficient validation of untrusted input in clipboard
0
0
BZ#1822609 CVE-2020-6431 chromium-browser: Insufficient policy enforcement in full screen
0
0
BZ#1822610 CVE-2020-6433 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822611 CVE-2020-6434 chromium-browser: Use after free in devtools
0
0
BZ#1822612 CVE-2020-6435 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822613 CVE-2020-6436 chromium-browser: Use after free in window management
0
0
BZ#1822614 CVE-2020-6437 chromium-browser: Inappropriate implementation in WebView
0
0
BZ#1822615 CVE-2020-6438 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822616 CVE-2020-6439 chromium-browser: Insufficient policy enforcement in navigations
0
0
BZ#1822617 CVE-2020-6440 chromium-browser: Inappropriate implementation in extensions
0
0
BZ#1822618 CVE-2020-6441 chromium-browser: Insufficient policy enforcement in omnibox
0
0
BZ#1822619 CVE-2020-6442 chromium-browser: Inappropriate implementation in cache
0
0
BZ#1822620 CVE-2020-6443 chromium-browser: Insufficient data validation in developer tools
0
0
BZ#1822621 CVE-2020-6444 chromium-browser: Uninitialized use in WebRTC
0
0
BZ#1822622 CVE-2020-6445 chromium-browser: Insufficient policy enforcement in trusted types
0
0
BZ#1822623 CVE-2020-6446 chromium-browser: Insufficient policy enforcement in trusted types
0
0
BZ#1822624 CVE-2020-6447 chromium-browser: Inappropriate implementation in developer tools
0
0
BZ#1822625 CVE-2020-6448 chromium-browser: Use after free in V8
0
0
BZ#1822628 CVE-2020-6423 CVE-2020-6430 CVE-2020-6431 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436 CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440 CVE-2020-6441 CVE-2020-6442 CVE-2020-6443 CVE-2020-6444 ... chromium: various flaws [epel-all]
0
0
BZ#1824949 CVE-2020-6457 chromium-browser: Use after free in speech recognizer
0
0
BZ#1824953 CVE-2020-6457 chromium: chromium-browser: Use after free in speech recognizer [epel-all]
0
0
BZ#1825510 chromium: crash on startup - (autofill?)
0
0
BZ#1827379 CVE-2020-6459 chromium-browser: Use after free in payments
0
0
BZ#1827380 CVE-2020-6460 chromium-browser: Insufficient data validation in URL formatting
0
0
BZ#1827381 CVE-2020-6458 chromium-browser: Out of bounds read and write in PDFium
0
0
BZ#1827384 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 chromium: various flaws [epel-all]
0
0
BZ#1828859 CVE-2020-6462 chromium-browser: Use after free in task scheduling
0
0
BZ#1828860 CVE-2020-6461 chromium-browser: Use after free in storage
0
0
BZ#1828864 CVE-2020-6461 CVE-2020-6462 chromium: various flaws [epel-all]
0
0
BZ#1832488 CVE-2020-6464 chromium-browser: Type Confusion in Blink
0
0
BZ#1832491 CVE-2020-6464 chromium: chromium-browser: Type Confusion in Blink [epel-all]
0
0
chromium-81.0.4044.138-1.el7

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 8.3.0 on bodhi-web-177-ngwjn.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy