From 723ef719e3782c5de59d10dbca136fd25748d0fb Mon Sep 17 00:00:00 2001 From: Rene Ladan Date: Tue, 14 Dec 2021 11:21:55 +0100 Subject: security/vuxml: add www/chromium < 96.0.4664.110 Obtained from: https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop_13.html --- security/vuxml/vuln-2021.xml | 44 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml index 323849898ffd..9d1155e2cb94 100644 --- a/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -1,3 +1,47 @@ + + chromium -- multiple vulnerabilities + + + chromium + 96.0.4664.110 + + + + +

Chrome Releases reports:

+
This release contains 5 security fixes, including:
+
+
[1263457] Critical CVE-2021-4098: Insufficient data validation + in Mojo. Reported by Sergei Glazunov of Google Project Zero on + 2021-10-26
+
[1270658] High CVE-2021-4099: Use after free in Swiftshader. + Reported by Aki Helin of Solita on 2021-11-16
+
[1272068] High CVE-2021-4100: Object lifecycle issue in ANGLE. + Reported by Aki Helin of Solita on 2021-11-19
+
[1262080] High CVE-2021-4101: Heap buffer overflow in + Swiftshader. Reported by Abraruddin Khan and Omair on + 2021-10-21
+
[1278387] High CVE-2021-4102: Use after free in V8. Reported by + Anonymous on 2021-12-09
+
+

+ + + + CVE-2021-4098 + CVE-2021-4099 + CVE-2021-4100 + CVE-2021-4101 + CVE-2021-4102 + https://chromereleases.googleblog.com/2021/12/stable-channel-update-for-desktop_13.html + + + 2021-12-13 + 2021-12-14 + + + Matrix clients -- several vulnerabilities -- cgit v1.2.3