{"id":"openSUSE-SU-2021:1131-1","summary":"Security update for chromium","details":"This update for chromium fixes the following issues:\n\nChromium 92.0.4515.131 (boo#1189006)\n\n* CVE-2021-30590: Heap buffer overflow in Bookmarks\n* CVE-2021-30591: Use after free in File System API\n* CVE-2021-30592: Out of bounds write in Tab Groups\n* CVE-2021-30593: Out of bounds read in Tab Strip\n* CVE-2021-30594: Use after free in Page Info UI\n* CVE-2021-30596: Incorrect security UI in Navigation\n* CVE-2021-30597: Use after free in Browser UI\n\nChromium 92.0.4515.107 (boo#1188590)\n\n* CVE-2021-30565: Out of bounds write in Tab Groups\n* CVE-2021-30566: Stack buffer overflow in Printing\n* CVE-2021-30567: Use after free in DevTools\n* CVE-2021-30568: Heap buffer overflow in WebGL\n* CVE-2021-30569: Use after free in sqlite\n* CVE-2021-30571: Insufficient policy enforcement in DevTools\n* CVE-2021-30572: Use after free in Autofill\n* CVE-2021-30573: Use after free in GPU\n* CVE-2021-30574: Use after free in protocol handling\n* CVE-2021-30575: Out of bounds read in Autofill\n* CVE-2021-30576: Use after free in DevTools\n* CVE-2021-30577: Insufficient policy enforcement in Installer\n* CVE-2021-30578: Uninitialized Use in Media\n* CVE-2021-30579: Use after free in UI framework\n* CVE-2021-30581: Use after free in DevTools\n* CVE-2021-30582: Inappropriate implementation in Animation\n* CVE-2021-30584: Incorrect security UI in Downloads\n* CVE-2021-30585: Use after free in sensor handling\n* CVE-2021-30588: Type Confusion in V8\n* CVE-2021-30589: Insufficient validation of untrusted input in Sharing\n\n","modified":"2026-02-04T02:56:43.924591Z","published":"2021-08-10T10:23:44Z","related":["CVE-2021-30565","CVE-2021-30566","CVE-2021-30567","CVE-2021-30568","CVE-2021-30569","CVE-2021-30571","CVE-2021-30572","CVE-2021-30573","CVE-2021-30574","CVE-2021-30575","CVE-2021-30576","CVE-2021-30577","CVE-2021-30578","CVE-2021-30579","CVE-2021-30581","CVE-2021-30582","CVE-2021-30584","CVE-2021-30585","CVE-2021-30588","CVE-2021-30589","CVE-2021-30590","CVE-2021-30591","CVE-2021-30592","CVE-2021-30593","CVE-2021-30594","CVE-2021-30596","CVE-2021-30597"],"upstream":["CVE-2021-30565","CVE-2021-30566","CVE-2021-30567","CVE-2021-30568","CVE-2021-30569","CVE-2021-30571","CVE-2021-30572","CVE-2021-30573","CVE-2021-30574","CVE-2021-30575","CVE-2021-30576","CVE-2021-30577","CVE-2021-30578","CVE-2021-30579","CVE-2021-30581","CVE-2021-30582","CVE-2021-30584","CVE-2021-30585","CVE-2021-30588","CVE-2021-30589","CVE-2021-30590","CVE-2021-30591","CVE-2021-30592","CVE-2021-30593","CVE-2021-30594","CVE-2021-30596","CVE-2021-30597"],"references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/QMTT3WQIVTBT7PZKT6YDJXEYNVRRJDO2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188590"},{"type":"REPORT","url":"https://bugzilla.suse.com/1189006"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30565"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30566"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30567"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30568"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30569"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30571"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30572"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30573"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30574"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30575"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30576"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30577"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30578"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30579"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30581"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30582"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30584"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30585"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30588"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30589"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30590"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30591"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30592"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30593"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30594"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30596"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-30597"}],"affected":[{"package":{"name":"chromium","ecosystem":"openSUSE:Leap 15.2","purl":"pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"92.0.4515.131-lp152.2.116.1"}]}],"ecosystem_specific":{"binaries":[{"chromium":"92.0.4515.131-lp152.2.116.1","chromedriver":"92.0.4515.131-lp152.2.116.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:1131-1.json"}}],"schema_version":"1.7.3"}