Bug 1169729 - (CVE-2020-6457) VUL-0: CVE-2020-6457: chromium: Update to 81.0.4044.113
(CVE-2020-6457)
VUL-0: CVE-2020-6457: chromium: Update to 81.0.4044.113
Status: RESOLVED FIXED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.1
Other Other
: P2 - High : Critical (vote)
: ---
Assigned To: Security Team bot
E-mail List
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-04-17 07:17 UTC by Alexandros Toptsoglou
Modified: 2021-12-15 09:40 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Alexandros Toptsoglou 2020-04-17 07:17:57 UTC
This update includes 1 security fix. 

[$TBD][1067851] Critical CVE-2020-6457: Use after free in speech recognizer. Reported by Leecraso and Guang Gong of Alpha Lab, Qihoo 360 on 2020-04-04
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.
Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.
Prudhvikumar Bommana Google Chrome
Share on Twitter Share on Facebook

https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_15.html
Comment 1 Tomáš Chvátal 2020-04-17 08:52:42 UTC
Updates submitted to 15.1:Update and Tumbleweed.
Comment 2 Swamp Workflow Management 2020-04-17 09:40:05 UTC
This is an autogenerated message for OBS integration:
This bug (1169729) was mentioned in
https://build.opensuse.org/request/show/794819 15.1 / chromium
Comment 3 Swamp Workflow Management 2020-04-20 10:40:18 UTC
openSUSE-SU-2020:0541-1: An update that fixes one vulnerability is now available.

Category: security (critical)
Bug References: 1169729
CVE References: CVE-2020-6457
Sources used:
openSUSE Leap 15.1 (src):    chromium-81.0.4044.113-lp151.2.80.1
Comment 4 Marcus Meissner 2020-04-20 14:01:13 UTC
released
Comment 5 Swamp Workflow Management 2020-04-29 12:40:05 UTC
This is an autogenerated message for OBS integration:
This bug (1169729) was mentioned in
https://build.opensuse.org/request/show/798875 15.1+Backports:SLE-15-SP1 / chromium
Comment 6 Swamp Workflow Management 2020-05-01 04:13:57 UTC
openSUSE-SU-2020:0566-1: An update that fixes one vulnerability is now available.

Category: security (critical)
Bug References: 1169729
CVE References: CVE-2020-6457
Sources used:
openSUSE Backports SLE-15-SP1 (src):    chromium-81.0.4044.113-bp151.3.70.1
Comment 7 OBSbugzilla Bot 2021-12-15 09:40:05 UTC
This is an autogenerated message for OBS integration:
This bug (1169729) was mentioned in
https://build.opensuse.org/request/show/940663 Backports:SLE-12-SP3 / chromium