Debian Chromium vulnerabilities

CVE-2020-6387 [HIGH] CVE-2020-6387: chromium - Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a r... Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted video stream. Scope: local bookworm: resolved (fixed in 80.0.3987.106-1) bullseye: resolved (fixed in 80.0.3987.106-1) forky: resolved (fixed in 80.0.3987.106-1) sid: resolved (fixed in 80.0.3987.106-1) trixie: resolved (

CVE-2020-6545 [HIGH] CVE-2020-6545: chromium - Use after free in audio in Google Chrome prior to 84.0.4147.125 allowed a remote... Use after free in audio in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (fixe

CVE-2020-15967 [HIGH] CVE-2020-15967: chromium - Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remo... Use after free in payments in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved

CVE-2020-16008 [HIGH] CVE-2020-16008: chromium - Stack buffer overflow in WebRTC in Google Chrome prior to 86.0.4240.183 allowed ... Stack buffer overflow in WebRTC in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit stack corruption via a crafted WebRTC packet. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie:

CVE-2020-15965 [HIGH] CVE-2020-15965: chromium - Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a remote at... Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: res

CVE-2020-6540 [HIGH] CVE-2020-6540: chromium - Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowed a remote... Buffer overflow in Skia in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (fixe

CVE-2020-6381 [HIGH] CVE-2020-6381: chromium - Integer overflow in JavaScript in Google Chrome on ChromeOS and Android prior to... Integer overflow in JavaScript in Google Chrome on ChromeOS and Android prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.106-1) bullseye: resolved (fixed in 80.0.3987.106-1) forky: resolved (fixed in 80.0.3987.106-1) sid: resolved (fixed in 80.0.3987.106

CVE-2020-6409 [HIGH] CVE-2020-6409: chromium - Inappropriate implementation in Omnibox in Google Chrome prior to 80.0.3987.87 a... Inappropriate implementation in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker who convinced the user to enter a URI to bypass navigation restrictions via a crafted domain name. Scope: local bookworm: resolved (fixed in 80.0.3987.106-1) bullseye: resolved (fixed in 80.0.3987.106-1) forky: resolved (fixed in 80.0.3987.106-1) sid: resolved (fi

CVE-2020-6518 [HIGH] CVE-2020-6518: chromium - Use after free in developer tools in Google Chrome prior to 84.0.4147.89 allowed... Use after free in developer tools in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had convinced the user to use developer tools to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid:

CVE-2020-15964 [HIGH] CVE-2020-15964: chromium - Insufficient data validation in media in Google Chrome prior to 85.0.4183.121 al... Insufficient data validation in media in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie

CVE-2020-6539 [HIGH] CVE-2020-6539: chromium - Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed a remote a... Use after free in CSS in Google Chrome prior to 84.0.4147.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (fixed

CVE-2020-6378 [HIGH] CVE-2020-6378: chromium - Use after free in speech in Google Chrome prior to 79.0.3945.130 allowed a remot... Use after free in speech in Google Chrome prior to 79.0.3945.130 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 79.0.3945.130-1) bullseye: resolved (fixed in 79.0.3945.130-1) forky: resolved (fixed in 79.0.3945.130-1) sid: resolved (fixed in 79.0.3945.130-1) trixie: resolved (fixed i

CVE-2020-6517 [HIGH] CVE-2020-6517: chromium - Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 allowed a... Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolve

CVE-2020-6383 [HIGH] CVE-2020-6383: chromium - Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote at... Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.116-1) bullseye: resolved (fixed in 80.0.3987.116-1) forky: resolved (fixed in 80.0.3987.116-1) sid: resolved (fixed in 80.0.3987.116-1) trixie: resolved (fixed in 80

CVE-2020-6550 [HIGH] CVE-2020-6550: chromium - Use after free in IndexedDB in Google Chrome prior to 84.0.4147.125 allowed a re... Use after free in IndexedDB in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (

CVE-2020-16004 [HIGH] CVE-2020-16004: chromium - Use after free in user interface in Google Chrome prior to 86.0.4240.183 allowed... Use after free in user interface in Google Chrome prior to 86.0.4240.183 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: res

CVE-2020-6453 [HIGH] CVE-2020-6453: chromium - Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.162 allow... Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.162-1) bullseye: resolved (fixed in 80.0.3987.162-1) forky: resolved (fixed in 80.0.3987.162-1) sid: resolved (fixed in 80.0.3987.162-1) trixie: resolve

CVE-2020-6552 [HIGH] CVE-2020-6552: chromium - Use after free in Blink in Google Chrome prior to 84.0.4147.125 allowed a remote... Use after free in Blink in Google Chrome prior to 84.0.4147.125 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved (fixe

CVE-2020-6407 [HIGH] CVE-2020-6407: chromium - Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.122 a... Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 80.0.3987.122-1) bullseye: resolved (fixed in 80.0.3987.122-1) forky: resolved (fixed in 80.0.3987.122-1) sid: resolved (fixed in 80.0.3987.122-1) trixie: res

CVE-2020-16003 [HIGH] CVE-2020-16003: chromium - Use after free in printing in Google Chrome prior to 86.0.4240.111 allowed a rem... Use after free in printing in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Scope: local bookworm: resolved (fixed in 87.0.4280.88-0.1) bullseye: resolved (fixed in 87.0.4280.88-0.1) forky: resolved (fixed in 87.0.4280.88-0.1) sid: resolved (fixed in 87.0.4280.88-0.1) trixie: resolved