MGASA-2020-0174 - Updated chromium-browser-stable packages fix security vulnerabilities

Publication date: 16 Apr 2020
URL: https://advisories.mageia.org/MGASA-2020-0174.html
Type: security
Affected Mageia releases: 7
CVE: CVE-2020-6423,
     CVE-2020-6430,
     CVE-2020-6431,
     CVE-2020-6432,
     CVE-2020-6433,
     CVE-2020-6434,
     CVE-2020-6435,
     CVE-2020-6436,
     CVE-2020-6437,
     CVE-2020-6438,
     CVE-2020-6439,
     CVE-2020-6440,
     CVE-2020-6441,
     CVE-2020-6442,
     CVE-2020-6443,
     CVE-2020-6444,
     CVE-2020-6445,
     CVE-2020-6446,
     CVE-2020-6447,
     CVE-2020-6448,
     CVE-2020-6450,
     CVE-2020-6451,
     CVE-2020-6452,
     CVE-2020-6454,
     CVE-2020-6455,
     CVE-2020-6456

Chromium-browser 81.0.4044.92 fixes security issues:

Multiple flaws were found in the way Chromium 80.0.3987.149 processes
various types of web content, where loading a web page containing
malicious content could cause Chromium to crash, execute arbitrary code,
or disclose sensitive information. (CVE-2020-6423, CVE-2020-6430,
CVE-2020-6431, CVE-2020-6432, CVE-2020-6433, CVE-2020-6434, CVE-2020-6435,
CVE-2020-6436, CVE-2020-6437, CVE-2020-6438, CVE-2020-6439, CVE-2020-6440,
CVE-2020-6441, CVE-2020-6442, CVE-2020-6443, CVE-2020-6444, CVE-2020-6445,
CVE-2020-6446, CVE-2020-6447, CVE-2020-6448, CVE-2020-6450, CVE-2020-6451,
CVE-2020-6452, CVE-2020-6454, CVE-2020-6455, CVE-2020-6456)

References:
- https://bugs.mageia.org/show_bug.cgi?id=26470
- https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop_31.html
- https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_7.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6423
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6430
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6431
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6432
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6433
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6434
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6435
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6436
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6437
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6438
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6439
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6440
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6441
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6442
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6443
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6444
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6445
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6446
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6447
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6448
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6450
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6451
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6452
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6454
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6455
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6456

SRPMS:
- 7/core/chromium-browser-stable-81.0.4044.92-1.mga7

Mageia 2020-0174: chromium-browser-stable security update

Chromium-browser 81.0.4044.92 fixes security issues: Multiple flaws were found in the way Chromium 80.0.3987.149 processes various types of web content, where loading a web page...

Summary

Chromium-browser 81.0.4044.92 fixes security issues:
Multiple flaws were found in the way Chromium 80.0.3987.149 processes various types of web content, where loading a web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information. (CVE-2020-6423, CVE-2020-6430, CVE-2020-6431, CVE-2020-6432, CVE-2020-6433, CVE-2020-6434, CVE-2020-6435, CVE-2020-6436, CVE-2020-6437, CVE-2020-6438, CVE-2020-6439, CVE-2020-6440, CVE-2020-6441, CVE-2020-6442, CVE-2020-6443, CVE-2020-6444, CVE-2020-6445, CVE-2020-6446, CVE-2020-6447, CVE-2020-6448, CVE-2020-6450, CVE-2020-6451, CVE-2020-6452, CVE-2020-6454, CVE-2020-6455, CVE-2020-6456)

References

- https://bugs.mageia.org/show_bug.cgi?id=26470

- https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop_31.html

- https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_7.html

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6423

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6430

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6431

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6432

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6433

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6434

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6435

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6436

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6437

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6438

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6439

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6440

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6441

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6442

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6443

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6444

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6445

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6446

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6447

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6448

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6450

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6451

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6452

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6454

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6455

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6456

Resolution

MGASA-2020-0174 - Updated chromium-browser-stable packages fix security vulnerabilities

SRPMS

- 7/core/chromium-browser-stable-81.0.4044.92-1.mga7

Severity
Publication date: 16 Apr 2020
URL: https://advisories.mageia.org/MGASA-2020-0174.html
Type: security
CVE: CVE-2020-6423, CVE-2020-6430, CVE-2020-6431, CVE-2020-6432, CVE-2020-6433, CVE-2020-6434, CVE-2020-6435, CVE-2020-6436, CVE-2020-6437, CVE-2020-6438, CVE-2020-6439, CVE-2020-6440, CVE-2020-6441, CVE-2020-6442, CVE-2020-6443, CVE-2020-6444, CVE-2020-6445, CVE-2020-6446, CVE-2020-6447, CVE-2020-6448, CVE-2020-6450, CVE-2020-6451, CVE-2020-6452, CVE-2020-6454, CVE-2020-6455, CVE-2020-6456

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved