Package chromium

Source package: chromium
Version: 84.0.4147.105-alt1.1.p9
Build time:  Sep 12, 2020, 07:37 AM
 in the task #257718
Category: Networking/WWW
Report package bug
License:  BSD-3-Clause and LGPL-2.1+
Summary:  An open source web browser developed by Google
Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all Internet users to experience the web.
List of rpms provided by this srpm: 
chromium (x86_64, i586, aarch64)
chromium-debuginfo (x86_64, i586, aarch64)
chromium-gnome (x86_64, i586, aarch64)
chromium-kde (x86_64, i586, aarch64)
Last changes:
Sept. 4, 2020 Andrey Cherepanov 84.0.4147.105-alt1.1.p9
- Disable 0024-Enable-VAVDA-VAVEA-and-VAJDA-on-linux-with-VAAPI-onl.patch.
July 28, 2020 Alexey Gladkov 84.0.4147.105-alt1
- New version (84.0.4147.105).
- Security fixes:
  - CVE-2020-6532: Use after free in SCTP.
  - CVE-2020-6537: Type Confusion in V8.
  - CVE-2020-6538: Inappropriate implementation in WebView.
  - CVE-2020-6539: Use after free in CSS.
  - CVE-2020-6540: Heap buffer overflow in Skia.
  - CVE-2020-6541: Use after free in WebUSB.
July 15, 2020 Alexey Gladkov 84.0.4147.89-alt1
- New version (84.0.4147.89).
- Fix compilation with system ffmpeg 4.3 (ALT#38716)
- Security fixes:
  - CVE-2020-6510: Heap buffer overflow in background fetch.
  - CVE-2020-6511: Side-channel information leakage in content security policy.
  - CVE-2020-6512: Type Confusion in V8.
  - CVE-2020-6513: Heap buffer overflow in PDFium.
  - CVE-2020-6514: Inappropriate implementation in WebRTC.
  - CVE-2020-6515: Use after free in tab strip.
  - CVE-2020-6516: Policy bypass in CORS.
  - CVE-2020-6517: Heap buffer overflow in history.
  - CVE-2020-6518: Use after free in developer tools.
  - CVE-2020-6519: Policy bypass in CSP.
  - CVE-2020-6520: Heap buffer overflow in Skia.
  - CVE-2020-6521: Side-channel information leakage in autofill.
  - CVE-2020-6522: Inappropriate implementation in external protocol handlers.
  - CVE-2020-6523: Out of bounds write in Skia.
  - CVE-2020-6524: Heap buffer overflow in WebAudio.
  - CVE-2020-6525: Heap buffer overflow in Skia.
  - CVE-2020-6526: Inappropriate implementation in iframe sandbox.
  - CVE-2020-6527: Insufficient policy enforcement in CSP.
  - CVE-2020-6528: Incorrect security UI in basic auth.
  - CVE-2020-6529: Inappropriate implementation in WebRTC.
  - CVE-2020-6530: Out of bounds memory access in developer tools.
  - CVE-2020-6531: Side-channel information leakage in scroll to text.
  - CVE-2020-6533: Type Confusion in V8.
  - CVE-2020-6534: Heap buffer overflow in WebRTC.
  - CVE-2020-6535: Insufficient data validation in WebUI.
  - CVE-2020-6536: Incorrect security UI in PWAs.

Back to Top