Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 202107-06 ] Chromium, Google Chrome
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663

PostPosted: Tue Jul 06, 2021 5:26 am    Post subject: [ GLSA 202107-06 ] Chromium, Google Chrome Reply with quote

Gentoo Linux Security Advisory

Title: Chromium, Google Chrome: Multiple vulnerabilities (GLSA 202107-06)
Severity: high
Exploitable: remote
Date: 2021-07-06
Bug(s): #789420, #792084, #795204, #796338, #796521
ID: 202107-06

Synopsis

Multiple vulnerabillities have been found in Chromium and Google
Chrome, the worst of which could allow remote attackers to execute
arbitrary code.


Background

Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all users to experience the web.
Google Chrome is one fast, simple, and secure browser for all your
devices.


Affected Packages

Package: www-client/google-chrome
Vulnerable: < 91.0.4472.114
Unaffected: >= 91.0.4472.114
Architectures: All supported architectures

Package: www-client/chromium
Vulnerable: < 91.0.4472.114
Unaffected: >= 91.0.4472.114
Architectures: All supported architectures


Description

Multiple vulnerabilities have been discovered in Chromium and Google
Chrome. Please review the CVE identifiers referenced below for details.


Impact

A remote attacker could execute arbitrary code, escalate privileges,
obtain sensitive information, spoof a URL or cause a Denial of Service
condition.


Workaround

There is no known workaround at this time.

Resolution

All Google Chrome users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-client/google-chrome-91.0.4472.114"
   
All Chromium users should upgrade to the latest version:
Code:
# emerge --sync
      # emerge --ask --oneshot --verbose
      ">=www-client/chromium-91.0.4472.114"
   


References

CVE-2021-30506
CVE-2021-30507
CVE-2021-30508
CVE-2021-30509
CVE-2021-30510
CVE-2021-30511
CVE-2021-30512
CVE-2021-30513
CVE-2021-30514
CVE-2021-30515
CVE-2021-30516
CVE-2021-30517
CVE-2021-30518
CVE-2021-30519
CVE-2021-30520
CVE-2021-30521
CVE-2021-30522
CVE-2021-30523
CVE-2021-30524
CVE-2021-30525
CVE-2021-30526
CVE-2021-30527
CVE-2021-30528
CVE-2021-30530
CVE-2021-30531
CVE-2021-30532
CVE-2021-30533
CVE-2021-30534
CVE-2021-30536
CVE-2021-30537
CVE-2021-30538
CVE-2021-30539
CVE-2021-30540
CVE-2021-30544
CVE-2021-30545
CVE-2021-30546
CVE-2021-30548
CVE-2021-30549
CVE-2021-30550
CVE-2021-30551
CVE-2021-30552
CVE-2021-30553
CVE-2021-30554
CVE-2021-30555
CVE-2021-30556
CVE-2021-30557


Last edited by GLSA on Sat Jan 22, 2022 4:18 am; edited 2 times in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum