Bug 1192184 - VUL-0: chromium: multiple security issues fixed in 95.0.4638.69
VUL-0: chromium: multiple security issues fixed in 95.0.4638.69
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.3
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
E-mail List
Depends on:
  Show dependency treegraph
Reported: 2021-10-30 19:24 UTC by Callum Farmer
Modified: 2021-12-15 09:50 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Callum Farmer 2021-10-30 19:24:15 UTC
[$10000][1259864] High CVE-2021-37997 : Use after free in Sign-In. Reported by Wei Yuan of MoyunSec VLab on 2021-10-14

[$7500][1259587] High CVE-2021-37998 : Use after free in Garbage Collection. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2021-10-13

[$1000][1251541] High CVE-2021-37999 : Insufficient data validation in New Tab Page. Reported by Ashish Arun Dhone on 2021-09-21

[$N/A][1249962] High CVE-2021-38000 : Insufficient validation of untrusted input in Intents. Reported by Clement Lecigne, Neel Mehta, and Maddie Stone of Google Threat Analysis Group on 2021-09-15

[$N/A][1260577] High CVE-2021-38001 : Type Confusion in V8. Reported by @s0rrymybad of Kunlun Lab via Tianfu Cup on 2021-10-16

[$N/A][1260940] High CVE-2021-38002 : Use after free in Web Transport. Reported by @__R0ng of 360 Alpha Lab, 漏洞研究院青训队 via Tianfu Cup on 2021-10-16

[$TBD][1263462] High CVE-2021-38003 : Inappropriate implementation in V8. Reported by Clément Lecigne from Google TAG and Samuel Groß from Google Project Zero on 2021-10-26

Google is aware that exploits for CVE-2021-38000 and CVE-2021-38003 exist in the wild.
Comment 1 Andreas Stieger 2021-10-31 16:23:43 UTC
Comment 2 OBSbugzilla Bot 2021-10-31 17:40:06 UTC
This is an autogenerated message for OBS integration:
This bug (1192184) was mentioned in
https://build.opensuse.org/request/show/928391 Factory / chromium
https://build.opensuse.org/request/show/928393 15.2+Backports:SLE-15-SP3 / chromium
Comment 3 OBSbugzilla Bot 2021-11-04 09:40:35 UTC
This is an autogenerated message for OBS integration:
This bug (1192184) was mentioned in
https://build.opensuse.org/request/show/929128 Backports:SLE-15-SP4 / chromium
Comment 4 Swamp Workflow Management 2021-11-08 20:17:39 UTC
openSUSE-SU-2021:1462-1: An update that fixes 7 vulnerabilities is now available.

Category: security (important)
Bug References: 1192184
CVE References: CVE-2021-37997,CVE-2021-37998,CVE-2021-37999,CVE-2021-38000,CVE-2021-38001,CVE-2021-38002,CVE-2021-38003
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    chromium-95.0.4638.69-lp152.2.138.1
openSUSE Backports SLE-15-SP3 (src):    chromium-95.0.4638.69-bp153.2.40.3
Comment 5 Andreas Stieger 2021-11-15 21:26:30 UTC
Comment 6 Carlos López 2021-11-24 09:19:07 UTC
This update also fixes CVE-2021-38004:
Comment 7 OBSbugzilla Bot 2021-12-15 09:50:26 UTC
This is an autogenerated message for OBS integration:
This bug (1192184) was mentioned in
https://build.opensuse.org/request/show/940663 Backports:SLE-12-SP3 / chromium