Bug 1178630 - (CVE-2020-16016) VUL-0: CVE-2020-16016: chromium: multiple security issues fixed in 86.0.4240.193
(CVE-2020-16016)
VUL-0: CVE-2020-16016: chromium: multiple security issues fixed in 86.0.4240.193
Status: RESOLVED FIXED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.2
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Security Team bot
E-mail List
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-11-10 15:26 UTC by Andreas Stieger
Modified: 2021-12-15 09:40 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2020-11-10 15:26:38 UTC
Fixed in Chromium 86.0.4240.193:

* Various fixes from internal audits, fuzzing and other initiatives

References:
https://crbug.com/1147056
https://chromereleases.googleblog.com/2020/11/stable-channel-update-for-desktop_9.html
Comment 1 Callum Farmer 2020-11-10 15:29:30 UTC
Thanks!

Will do it ASAP.

Callum
Comment 2 Marcus Meissner 2020-11-10 16:46:27 UTC
[$N/A][1146679] High CVE-2020-16016: Inappropriate implementation in base. Reported by Rong Jian and Leecraso of 360 Alpha Lab on 2020-11-07
Comment 3 OBSbugzilla Bot 2020-11-11 15:20:09 UTC
This is an autogenerated message for OBS integration:
This bug (1178630) was mentioned in
https://build.opensuse.org/request/show/847825 Factory / chromium
https://build.opensuse.org/request/show/847836 15.1+15.2+Backports:SLE-15-SP1+Backports:SLE-15-SP2 / chromium
Comment 4 OBSbugzilla Bot 2020-11-12 11:40:07 UTC
This is an autogenerated message for OBS integration:
This bug (1178630) was mentioned in
https://build.opensuse.org/request/show/848028 15.1+15.2+Backports:SLE-15-SP1+Backports:SLE-15-SP2 / chromium
Comment 5 Swamp Workflow Management 2020-11-15 20:14:37 UTC
openSUSE-SU-2020:1929-1: An update that fixes three vulnerabilities is now available.

Category: security (important)
Bug References: 1178630,1178703
CVE References: CVE-2020-16013,CVE-2020-16016,CVE-2020-16017
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    chromium-86.0.4240.198-lp152.2.48.1
openSUSE Leap 15.1 (src):    chromium-86.0.4240.198-lp151.2.153.1
openSUSE Backports SLE-15-SP2 (src):    chromium-86.0.4240.198-bp152.2.29.1
openSUSE Backports SLE-15-SP1 (src):    chromium-86.0.4240.198-bp151.3.122.1
Comment 6 Swamp Workflow Management 2020-11-16 14:20:11 UTC
openSUSE-SU-2020:1943-1: An update that fixes three vulnerabilities is now available.

Category: security (important)
Bug References: 1178630,1178703
CVE References: CVE-2020-16013,CVE-2020-16016,CVE-2020-16017
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP1 (src):    chromium-86.0.4240.198-bp151.3.128.1
Comment 7 Swamp Workflow Management 2020-11-25 14:36:02 UTC
openSUSE-SU-2020:2013-1: An update that fixes three vulnerabilities is now available.

Category: security (important)
Bug References: 1178630,1178703
CVE References: CVE-2020-16013,CVE-2020-16016,CVE-2020-16017
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP1 (src):    chromium-86.0.4240.198-bp151.3.134.1
Comment 8 Swamp Workflow Management 2020-11-25 23:18:25 UTC
openSUSE-SU-2020:2016-1: An update that fixes three vulnerabilities is now available.

Category: security (important)
Bug References: 1178630,1178703
CVE References: CVE-2020-16013,CVE-2020-16016,CVE-2020-16017
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP2 (src):    chromium-86.0.4240.198-bp152.2.35.1
Comment 9 Marcus Meissner 2020-12-09 10:35:13 UTC
released
Comment 10 OBSbugzilla Bot 2021-12-15 09:40:58 UTC
This is an autogenerated message for OBS integration:
This bug (1178630) was mentioned in
https://build.opensuse.org/request/show/940663 Backports:SLE-12-SP3 / chromium