Google Chrome Chrome vulnerabilities

CVE-2021-21106 [HIGH] Stable Channel Update for Desktop: CVE-2021-21106 Stable Channel Update for Desktop CVE-2021-21106: Use after free in autofill. Reported by Weipeng Jiang (@Krace) from Codesafe Team of Legendsec at Qi'anxin Group on 2020-11-13 [$20000][ 1153595 ] High CVE-2021-21107: Use after free in drag and drop Reported by Leecraso and Guang Gong of 360 Alpha Lab on 2020-11-30 [$20000][ 1155426 ] High CVE-2021-21108: Use after free in media Severity: high

CVE-2021-21109 [HIGH] Stable Channel Update for Desktop: CVE-2021-21109 Stable Channel Update for Desktop CVE-2021-21109: Use after free in payments. Reported by Rong Jian and Guang Gong of 360 Alpha Lab on 2020-11-24 [$15000][ 1152451 ] High CVE-2021-21110: Use after free in safe browsing Reported by Anonymous on 2020-11-24 [$7500][ 1149125 ] High CVE-2021-21111: Insufficient policy enforcement in WebUI Severity: high

CVE-2021-21114 [HIGH] Stable Channel Update for Desktop: CVE-2021-21114 Stable Channel Update for Desktop CVE-2021-21114: Use after free in audio. Reported by Man Yue Mo of GitHub Security Lab on 2020-11-17 [$TBD][ 1157790 ] High CVE-2020-15995: Out of bounds write in V8 Reported by Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab on 2020-12-11 [$TBD][ 1157814 ] High CVE-2021-21115: Use after free in safe browsing Severity: high

CVE-2021-21112 [HIGH] Stable Channel Update for Desktop: CVE-2021-21112 Stable Channel Update for Desktop CVE-2021-21112: Use after free in Blink. Reported by YoungJoo Lee(@ashuu_lee) of Raon Whitehat on 2020-11-20 [$6000][ 1155178 ] High CVE-2021-21113: Heap buffer overflow in Skia Reported by tsubmunu on 2020-12-03 [$N/A][ 1148309 ] High CVE-2020-16043: Insufficient data validation in networking Severity: high

CVE-2021-21116 [MEDIUM] Stable Channel Update for Desktop: CVE-2021-21116 Stable Channel Update for Desktop CVE-2021-21116: Heap buffer overflow in audio. Reported by Alison Huffman, Microsoft Browser Vulnerability Research on 2020-11-19 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel Severity: medium

CVE-2020-16040 [HIGH] Stable Channel Update for Desktop: CVE-2020-16040 Stable Channel Update for Desktop CVE-2020-16040: Insufficient data validation in V8. Reported by Lucas Pinheiro, Microsoft Browser Vulnerability Research on 2020-11-19 [$TBD][ 1151865 ] Medium CVE-2020-16041: Out of bounds read in networking Reported by Sergei Glazunov and Mark Brand of Google Project Zero on 2020-11-23 [$TBD][ 1151890 ] Medium CVE-2020-16042: Uninitialized Use in V8 Severity: high

CVE-2020-16037 [HIGH] Stable Channel Update for Desktop: CVE-2020-16037 Stable Channel Update for Desktop CVE-2020-16037: Use after free in clipboard. Reported by Ryoya Tsukasaki on 2020-10-26 [$TBD][ 1138683 ] High CVE-2020-16038: Use after free in media Reported by Khalil Zhani on 2020-10-14 [$TBD][ 1149177 ] High CVE-2020-16039: Use after free in extensions Severity: high

CVE-2020-16021 [HIGH] Stable Channel Update for Desktop: CVE-2020-16021 Stable Channel Update for Desktop CVE-2020-16021: Race in ImageBurner. Reported by Rory McNamara on 2020-10-16 [$TBD][ 1145680 ] High CVE-2020-16022: Insufficient policy enforcement in networking Reported by @SamyKamkar on 2020-11-04 [$TBD][ 1146673 ] High CVE-2020-16015: Insufficient data validation in WASM Severity: high

CVE-2020-16025 [HIGH] Stable Channel Update for Desktop: CVE-2020-16025 Stable Channel Update for Desktop CVE-2020-16025: Heap buffer overflow in clipboard. Reported by Sergei Glazunov of Google Project Zero on 2020-11-10 [$TBD][ 1125614 ] High CVE-2020-16045: Use after free in Payments Reported by Man Yue Mo of GitHub Security Lab on 2020-09-07 [$7500][ 1139153 ] Medium CVE-2020-16026: Use after free in WebRTC Severity: high

CVE-2020-16018 [HIGH] Stable Channel Update for Desktop: CVE-2020-16018 Stable Channel Update for Desktop CVE-2020-16018: Use after free in payments. Reported by Man Yue Mo of GitHub Security Lab on 2020-10-07 [$TBD][ 1139408 ] High CVE-2020-16019: Inappropriate implementation in filesystem Reported by Rory McNamara on 2020-10-16 [$TBD][ 1139411 ] High CVE-2020-16020: Inappropriate implementation in cryptohome Severity: high

CVE-2020-16014 [HIGH] Stable Channel Update for Desktop: CVE-2020-16014 Stable Channel Update for Desktop CVE-2020-16014: Use after free in PPAPI. Reported by Rong Jian and Leecraso of 360 Alpha Lab on 2020-11-07 [$7500+$7500][ 1146761 ] High CVE-2020-16023: Use after free in WebCodecs Reported by Brendon Tiszka and David Manouchehri supporting the @eff on 2020-11-07 [$NA][ 1147430 ] High CVE-2020-16024: Heap buffer overflow in UI Severity: high

CVE-2020-16031 [MEDIUM] Stable Channel Update for Desktop: CVE-2020-16031 Stable Channel Update for Desktop CVE-2020-16031: Incorrect security UI in tab preview. Reported by wester0x01(https://twitter Severity: medium

CVE-2020-16033 [MEDIUM] Stable Channel Update for Desktop: CVE-2020-16033 Stable Channel Update for Desktop CVE-2020-16033: Incorrect security UI in WebUSB. Reported by Khalil Zhani on 2020-10-28 [$TBD][ 1137362 ] Medium CVE-2020-16034: Inappropriate implementation in WebRTC Reported by vvmute (Benjamin Petermaier) on 2020-10-12 [$TBD][ 1139409 ] Medium CVE-2020-16035: Insufficient data validation in cros-disks Severity: medium

CVE-2020-16027 [MEDIUM] Stable Channel Update for Desktop: CVE-2020-16027 Stable Channel Update for Desktop CVE-2020-16027: Insufficient policy enforcement in developer tools. Reported by David Erceg on 2020-08-14 [$5000][ 1138446 ] Medium CVE-2020-16028: Heap buffer overflow in WebRTC Reported by asnine on 2020-10-14 [$3000][ 1134338 ] Medium CVE-2020-16029: Inappropriate implementation in PDFium Severity: medium

CVE-2020-16032 [MEDIUM] Stable Channel Update for Desktop: CVE-2020-16032 Stable Channel Update for Desktop CVE-2020-16032: Incorrect security UI in sharing. Reported by wester0x01(https://twitter Severity: medium

CVE-2020-16030 [MEDIUM] Stable Channel Update for Desktop: CVE-2020-16030 Stable Channel Update for Desktop CVE-2020-16030: Insufficient data validation in Blink. Reported by Michał Bentkowski of Securitum on 2020-10-22 [$1000][ 945997 ] Medium CVE-2019-8075: Insufficient data validation in Flash Reported by Nethanel Gelernter, Cyberpion (https://www Severity: medium

CVE-2020-16012 [LOW] Stable Channel Update for Desktop: CVE-2020-16012 Stable Channel Update for Desktop CVE-2020-16012: Side-channel information leakage in graphics. Reported by Aleksejs Popovs on 2020-05-30 [$500][ 830808 ] Low CVE-2020-16036: Inappropriate implementation in cookies Reported by Jun Kokatsu (@shhnjk) on 2018-04-09 We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel S

CVE-2020-16013 [HIGH] Stable Channel Update for Desktop: CVE-2020-16013 Stable Channel Update for Desktop CVE-2020-16013: Inappropriate implementation in V8. Reported by Anonymous on 2020-11-09 [$TBD][ 1146709 ] High CVE-2020-16017: Use after free in site isolation Reported by Anonymous on 2020-11-07 Google is aware of reports that exploits for CVE-2020-16013 and CVE-2020-16017 exist in the wild Severity: high

CVE-2020-16016 [HIGH] Stable Channel Update for Desktop: CVE-2020-16016 Stable Channel Update for Desktop CVE-2020-16016: Inappropriate implementation in base. Reported by Rong Jian and Leecraso of 360 Alpha Lab on 2020-11-07 Many of our security bugs are detected using AddressSanitizer , MemorySanitizer , UndefinedBehaviorSanitizer , Control Flow Integrity , libFuzzer , or AFL Severity: high

CVE-2020-16007 [HIGH] Stable Channel Update for Desktop: CVE-2020-16007 Stable Channel Update for Desktop CVE-2020-16007: Insufficient data validation in installer. Reported by Abdelhamid Naceri (halov) on 2020-09-04 [$TBD][ 1134107 ] High CVE-2020-16008: Stack buffer overflow in WebRTC Reported by Tolya Korniltsev on 2020-10-01 [$NA][ 1143772 ] High CVE-2020-16009: Inappropriate implementation in V8 Severity: high