[ubuntu/bionic-updates] chromium-browser 91.0.4472.77-0ubuntu0.18.04.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Jun 1 21:34:20 UTC 2021
chromium-browser (91.0.4472.77-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 91.0.4472.77
- CVE-2021-30521: Heap buffer overflow in Autofill.
- CVE-2021-30522: Use after free in WebAudio.
- CVE-2021-30523: Use after free in WebRTC.
- CVE-2021-30524: Use after free in TabStrip.
- CVE-2021-30525: Use after free in TabGroups.
- CVE-2021-30526: Out of bounds write in TabStrip.
- CVE-2021-30527: Use after free in WebUI.
- CVE-2021-30528: Use after free in WebAuthentication.
- CVE-2021-30529: Use after free in Bookmarks.
- CVE-2021-30530: Out of bounds memory access in WebAudio.
- CVE-2021-30531: Insufficient policy enforcement in Content Security Policy.
- CVE-2021-30532: Insufficient policy enforcement in Content Security Policy.
- CVE-2021-30533: Insufficient policy enforcement in PopupBlocker.
- CVE-2021-30534: Insufficient policy enforcement in iFrameSandbox.
- CVE-2021-30535: Double free in ICU.
- CVE-2021-21212: Insufficient data validation in networking.
- CVE-2021-30536: Out of bounds read in V8.
- CVE-2021-30537: Insufficient policy enforcement in cookies.
- CVE-2021-30538: Insufficient policy enforcement in content security policy.
- CVE-2021-30539: Insufficient policy enforcement in content security policy.
- CVE-2021-30540: Incorrect security UI in payments.
* debian/control: add a build dependency on libcurl4-openssl-dev
* debian/patches/build-with-old-libva-missing-defines.patch: refreshed
* debian/patches/build-with-old-libva-no-av1.patch: updated
* debian/patches/closure-compiler-use-system-wide-java.patch: added
* debian/patches/gn-no-last-commit-position.patch: refreshed
* debian/patches/node-use-system-wide.patch: refreshed
* debian/patches/set-rpath-on-chromium-executables.patch: refreshed
* debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
* debian/patches/use-clang-versioned.patch: refreshed
* debian/patches/widevine-enable-version-string.patch: refreshed
chromium-browser (90.0.4430.212-0ubuntu0.18.04.1) bionic; urgency=medium
* Upstream release: 90.0.4430.212
- CVE-2021-30506: Incorrect security UI in Web App Installs.
- CVE-2021-30507: Inappropriate implementation in Offline.
- CVE-2021-30508: Heap buffer overflow in Media Feeds.
- CVE-2021-30509: Out of bounds write in Tab Strip.
- CVE-2021-30510: Race in Aura.
- CVE-2021-30511: Out of bounds read in Tab Groups.
- CVE-2021-30512: Use after free in Notifications.
- CVE-2021-30513: Type Confusion in V8.
- CVE-2021-30514: Use after free in Autofill.
- CVE-2021-30515: Use after free in File API.
- CVE-2021-30516: Heap buffer overflow in History.
- CVE-2021-30517: Type Confusion in V8.
- CVE-2021-30518: Heap buffer overflow in Reader Mode.
- CVE-2021-30519: Use after free in Payments.
- CVE-2021-30520: Use after free in Tab Strip.
Date: 2021-05-26 11:34:15.880217+00:00
Changed-By: Olivier Tilloy <olivier.tilloy at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/chromium-browser/91.0.4472.77-0ubuntu0.18.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list