Debian Chromium vulnerabilities

CVE-2020-16041 [HIGH] CVE-2020-16041: chromium - Out of bounds read in networking in Google Chrome prior to 87.0.4280.88 allowed ... Out of bounds read in networking in Google Chrome prior to 87.0.4280.88 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4

CVE-2020-6447 [HIGH] CVE-2020-6447: chromium - Inappropriate implementation in developer tools in Google Chrome prior to 81.0.4... Inappropriate implementation in developer tools in Google Chrome prior to 81.0.4044.92 allowed a remote attacker who had convinced the user to use devtools to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 81.0.4044.92-1) bullseye: resolved (fixed in 81.0.4044.92-1) forky: resolved (fixed in 81.0.4044.92-1) sid:

CVE-2020-16015 [HIGH] CVE-2020-16015: chromium - Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allo... Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie:

CVE-2020-6420 [HIGH] CVE-2020-6420: chromium - Insufficient policy enforcement in media in Google Chrome prior to 80.0.3987.132... Insufficient policy enforcement in media in Google Chrome prior to 80.0.3987.132 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.132-1) bullseye: resolved (fixed in 80.0.3987.132-1) forky: resolved (fixed in 80.0.3987.132-1) sid: resolved (fixed in 80.0.3987.132-1) trixie: resolved (f

CVE-2020-6575 [HIGH] CVE-2020-6575: chromium - Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote attacker w... Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280

CVE-2020-6434 [HIGH] CVE-2020-6434: chromium - Use after free in devtools in Google Chrome prior to 81.0.4044.92 allowed a remo... Use after free in devtools in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 81.0.4044.92-1) bullseye: resolved (fixed in 81.0.4044.92-1) forky: resolved (fixed in 81.0.4044.92-1) sid: resolved (fixed in 81.0.4044.92-1) trixie: resolved (fixed in 8

CVE-2020-6520 [HIGH] CVE-2020-6520: chromium - Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote ... Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (fixed

CVE-2020-6464 [HIGH] CVE-2020-6464: chromium - Type confusion in Blink in Google Chrome prior to 81.0.4044.138 allowed a remote... Type confusion in Blink in Google Chrome prior to 81.0.4044.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 83.0.4103.83-1) bullseye: resolved (fixed in 83.0.4103.83-1) forky: resolved (fixed in 83.0.4103.83-1) sid: resolved (fixed in 83.0.4103.83-1) trixie: resolved (fixed in 83.

CVE-2020-6398 [HIGH] CVE-2020-6398: chromium - Use of uninitialized data in PDFium in Google Chrome prior to 80.0.3987.87 allow... Use of uninitialized data in PDFium in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. Scope: local bookworm: resolved (fixed in 80.0.3987.106-1) bullseye: resolved (fixed in 80.0.3987.106-1) forky: resolved (fixed in 80.0.3987.106-1) sid: resolved (fixed in 80.0.3987.106-1) trixie: resolved

CVE-2020-6555 [HIGH] CVE-2020-6555: chromium - Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a re... Out of bounds read in WebGL in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.8

CVE-2020-6439 [HIGH] CVE-2020-6439: chromium - Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.40... Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to bypass security UI via a crafted HTML page. Scope: local bookworm: resolved (fixed in 81.0.4044.92-1) bullseye: resolved (fixed in 81.0.4044.92-1) forky: resolved (fixed in 81.0.4044.92-1) sid: resolved (fixed in 81.0.4044.92-1) trixie: resolved (fixed i

CVE-2020-6423 [HIGH] CVE-2020-6423: chromium - Use after free in audio in Google Chrome prior to 81.0.4044.92 allowed a remote ... Use after free in audio in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 81.0.4044.92-1) bullseye: resolved (fixed in 81.0.4044.92-1) forky: resolved (fixed in 81.0.4044.92-1) sid: resolved (fixed in 81.0.4044.92-1) trixie: resolved (fixed in 81.0

CVE-2020-16019 [HIGH] CVE-2020-16019: chromium - Inappropriate implementation in filesystem in Google Chrome on ChromeOS prior to... Inappropriate implementation in filesystem in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to bypass noexec restrictions via a malicious file. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid:

CVE-2020-16009 [HIGH] CVE-2020-16009: chromium - Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allow... Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: r

CVE-2020-16006 [HIGH] CVE-2020-16006: chromium - Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allow... Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: r

CVE-2020-6422 [HIGH] CVE-2020-6422: chromium - Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowed a remote... Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.149-1) bullseye: resolved (fixed in 80.0.3987.149-1) forky: resolved (fixed in 80.0.3987.149-1) sid: resolved (fixed in 80.0.3987.149-1) trixie: resolved (fixed in

CVE-2020-16028 [HIGH] CVE-2020-16028: chromium - Heap buffer overflow in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a ... Heap buffer overflow in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolv

CVE-2020-6418 [HIGH] CVE-2020-6418: chromium - Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote at... Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.122-1) bullseye: resolved (fixed in 80.0.3987.122-1) forky: resolved (fixed in 80.0.3987.122-1) sid: resolved (fixed in 80.0.3987.122-1) trixie: resolved (fixed in 80

CVE-2020-6548 [HIGH] CVE-2020-6548: chromium - Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.125 allowed a r... Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.125 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fix

CVE-2020-6454 [HIGH] CVE-2020-6454: chromium - Use after free in extensions in Google Chrome prior to 81.0.4044.92 allowed an a... Use after free in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. Scope: local bookworm: resolved (fixed in 81.0.4044.92-1) bullseye: resolved (fixed in 81.0.4044.92-1) forky: resolved (fixed in 81.0.4044.92-1) sid: resolv