FEDORA-2020-da49fbb17c created by spot 2 years ago for Fedora 31
stable

Are you ready, kids? I said, are you ready?

Whoooooo has another update for you to see? Google Chromium! For browsing and tweeting (but not FTP) Google Chromium! If improved security be something you wish Google Chromium! Then run dnf while you flop like a fish! Google Chromium! Google Chromium! Google Chromium! Google Chromium!

Ahem. Sorry*. This update fixes the following security vulnerabilities:

  • CVE-2020-6464
  • CVE-2020-6461
  • CVE-2020-6462

*Not sorry


Another day, another chromium update. This one fixes:

CVE-2020-6458 CVE-2020-6459 CVE-2020-6460


Fix dependency issue introduced when switching from a "shared" build to a "static" build.


A new major version of Chromium without any security bugs! Just kidding. Here's the CVE list:

CVE-2020-6454 CVE-2020-6423 CVE-2020-6455 CVE-2020-6430 CVE-2020-6456 CVE-2020-6431 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436 CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440 CVE-2020-6441 CVE-2020-6442 CVE-2020-6443 CVE-2020-6444 CVE-2020-6445 CVE-2020-6446 CVE-2020-6447 CVE-2020-6448 CVE-2020-6432 CVE-2020-6457

Oh, and this build switches over to a static build, so the chromium-libs and chromium-libs-media subpackages are now obsolete, but it should be slightly better for performance.

How to install

sudo dnf upgrade --advisory=FEDORA-2020-da49fbb17c

This update has been submitted for testing by spot.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has obsoleted chromium-81.0.4044.122-1.fc31, and has inherited its bugs and notes.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon szydell commented & provided feedback 2 years ago
karma

lgtm

This update can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1822604 CVE-2020-6454 chromium-browser: Use after free in extensions
0
0
BZ#1822605 CVE-2020-6423 chromium-browser: Use after free in audio
0
0
BZ#1822606 CVE-2020-6455 chromium-browser: Out of bounds read in WebSQL
0
0
BZ#1822607 CVE-2020-6430 chromium-browser: Type Confusion in V8
0
0
BZ#1822608 CVE-2020-6456 chromium-browser: Insufficient validation of untrusted input in clipboard
0
0
BZ#1822609 CVE-2020-6431 chromium-browser: Insufficient policy enforcement in full screen
0
0
BZ#1822610 CVE-2020-6433 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822611 CVE-2020-6434 chromium-browser: Use after free in devtools
0
0
BZ#1822612 CVE-2020-6435 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822613 CVE-2020-6436 chromium-browser: Use after free in window management
0
0
BZ#1822614 CVE-2020-6437 chromium-browser: Inappropriate implementation in WebView
0
0
BZ#1822615 CVE-2020-6438 chromium-browser: Insufficient policy enforcement in extensions
0
0
BZ#1822616 CVE-2020-6439 chromium-browser: Insufficient policy enforcement in navigations
0
0
BZ#1822617 CVE-2020-6440 chromium-browser: Inappropriate implementation in extensions
0
0
BZ#1822618 CVE-2020-6441 chromium-browser: Insufficient policy enforcement in omnibox
0
0
BZ#1822619 CVE-2020-6442 chromium-browser: Inappropriate implementation in cache
0
0
BZ#1822620 CVE-2020-6443 chromium-browser: Insufficient data validation in developer tools
0
0
BZ#1822621 CVE-2020-6444 chromium-browser: Uninitialized use in WebRTC
0
0
BZ#1822622 CVE-2020-6445 chromium-browser: Insufficient policy enforcement in trusted types
0
0
BZ#1822623 CVE-2020-6446 chromium-browser: Insufficient policy enforcement in trusted types
0
0
BZ#1822624 CVE-2020-6447 chromium-browser: Inappropriate implementation in developer tools
0
0
BZ#1822625 CVE-2020-6448 chromium-browser: Use after free in V8
0
0
BZ#1822627 CVE-2020-6423 CVE-2020-6430 CVE-2020-6431 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436 CVE-2020-6437 CVE-2020-6438 CVE-2020-6439 CVE-2020-6440 CVE-2020-6441 CVE-2020-6442 CVE-2020-6443 CVE-2020-6444 ... chromium: various flaws [fedora-all]
0
0
BZ#1824949 CVE-2020-6457 chromium-browser: Use after free in speech recognizer
0
0
BZ#1824951 CVE-2020-6457 chromium: chromium-browser: Use after free in speech recognizer [fedora-all]
0
0
BZ#1825510 chromium: crash on startup - (autofill?)
0
0
BZ#1827379 CVE-2020-6459 chromium-browser: Use after free in payments
0
0
BZ#1827380 CVE-2020-6460 chromium-browser: Insufficient data validation in URL formatting
0
0
BZ#1827381 CVE-2020-6458 chromium-browser: Out of bounds read and write in PDFium
0
0
BZ#1827383 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 chromium: various flaws [fedora-all]
0
0
BZ#1828859 CVE-2020-6462 chromium-browser: Use after free in task scheduling
0
0
BZ#1828860 CVE-2020-6461 chromium-browser: Use after free in storage
0
0
BZ#1828863 CVE-2020-6461 CVE-2020-6462 chromium: various flaws [fedora-all]
0
0
BZ#1832488 CVE-2020-6464 chromium-browser: Type Confusion in Blink
0
0
BZ#1832490 CVE-2020-6464 chromium: chromium-browser: Type Confusion in Blink [fedora-all]
0
0

Automated Test Results