UbuntuUpdates.org

Package "chromium-browser"

Name: chromium-browser

Description:

Chromium web browser, open-source version of Chrome

Latest version: 81.0.4044.138-0ubuntu0.16.04.1
Release: xenial (16.04)
Level: security
Repository: universe
Homepage: https://chromium.googlesource.com/chromium/src/

Links

Save this URL for the latest version of "chromium-browser": https://www.ubuntuupdates.org/chromium-browser


Download "chromium-browser"


Other versions of "chromium-browser" in Xenial

Repository Area Version
base universe 49.0.2623.108-0ubuntu1.1233
updates universe 81.0.4044.138-0ubuntu0.16.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 81.0.4044.138-0ubuntu0.16.04.1 2020-05-12 19:07:29 UTC

  chromium-browser (81.0.4044.138-0ubuntu0.16.04.1) xenial; urgency=medium

  * Upstream release: 81.0.4044.138
    - CVE-2020-6831: Stack buffer overflow in SCTP.
    - CVE-2020-6464: Type Confusion in Blink.

 -- Olivier Tilloy <email address hidden> Wed, 06 May 2020 08:52:03 +0200

Source diff to previous version

Version: 81.0.4044.122-0ubuntu0.16.04.1 2020-05-01 00:07:08 UTC
No changelog available yet.
Source diff to previous version

Version: 80.0.3987.163-0ubuntu0.16.04.1 2020-04-07 16:07:07 UTC

  chromium-browser (80.0.3987.163-0ubuntu0.16.04.1) xenial; urgency=medium

  * Upstream release: 80.0.3987.163

 -- Olivier Tilloy <email address hidden> Sat, 04 Apr 2020 16:27:05 +0200

Source diff to previous version

Version: 80.0.3987.149-0ubuntu0.16.04.1 2020-03-30 20:06:16 UTC

  chromium-browser (80.0.3987.149-0ubuntu0.16.04.1) xenial; urgency=medium

  * Upstream release: 80.0.3987.149
    - CVE-2019-20503: Out of bounds read in usersctplib.
    - CVE-2020-6383: Type confusion in V8.
    - CVE-2020-6384: Use after free in WebAudio.
    - CVE-2020-6386: Use after free in speech.
    - CVE-2020-6407: Out of bounds memory access in streams.
    - CVE-2020-6418: Type confusion in V8.
    - CVE-2020-6420: Insufficient policy enforcement in media.
    - CVE-2020-6422: Use after free in WebGL.
    - CVE-2020-6424: Use after free in media.
    - CVE-2020-6425: Insufficient policy enforcement in extensions.
    - CVE-2020-6426: Inappropriate implementation in V8.
    - CVE-2020-6427: Use after free in audio.
    - CVE-2020-6428: Use after free in audio.
    - CVE-2020-6429: Use after free in audio.
    - CVE-2020-6449: Use after free in audio.

 -- Olivier Tilloy <email address hidden> Wed, 18 Mar 2020 21:52:22 +0100

Source diff to previous version
CVE-2019-20503 usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.
CVE-2020-6383 Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page
CVE-2020-6384 Use after free in WebAudio in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM
CVE-2020-6386 Use after free in speech in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML
CVE-2020-6407 Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a
CVE-2020-6418 Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page
CVE-2020-6420 Insufficient policy enforcement in media in Google Chrome prior to 80.0.3987.132 allowed a remote attacker to bypass same origin policy via a crafted
CVE-2020-6422 Use after free in WebGL in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p
CVE-2020-6424 Use after free in media in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p
CVE-2020-6425 Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.149 allowed an attacker who convinced a user to install a malicious
CVE-2020-6426 Inappropriate implementation in V8 in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a cra
CVE-2020-6427 Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p
CVE-2020-6428 Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p
CVE-2020-6429 Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p
CVE-2020-6449 Use after free in audio in Google Chrome prior to 80.0.3987.149 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML p

Version: 80.0.3987.87-0ubuntu0.16.04.1 2020-02-13 23:06:59 UTC

  chromium-browser (80.0.3987.87-0ubuntu0.16.04.1) xenial; urgency=medium

  * Upstream release: 80.0.3987.87
    - CVE-2020-6381: Integer overflow in JavaScript.
    - CVE-2020-6382: Type Confusion in JavaScript.
    - CVE-2019-18197: Multiple vulnerabilities in XML.
    - CVE-2019-19926: Inappropriate implementation in SQLite.
    - CVE-2020-6385: Insufficient policy enforcement in storage.
    - CVE-2019-19880, CVE-2019-19925: Multiple vulnerabilities in SQLite.
    - CVE-2020-6387: Out of bounds write in WebRTC.
    - CVE-2020-6388: Out of bounds memory access in WebAudio.
    - CVE-2020-6389: Out of bounds write in WebRTC.
    - CVE-2020-6390: Out of bounds memory access in streams.
    - CVE-2020-6391: Insufficient validation of untrusted input in Blink.
    - CVE-2020-6392: Insufficient policy enforcement in extensions.
    - CVE-2020-6393: Insufficient policy enforcement in Blink.
    - CVE-2020-6394: Insufficient policy enforcement in Blink.
    - CVE-2020-6395: Out of bounds read in JavaScript.
    - CVE-2020-6396: Inappropriate implementation in Skia.
    - CVE-2020-6397: Incorrect security UI in sharing.
    - CVE-2020-6398: Uninitialized use in PDFium.
    - CVE-2020-6399: Insufficient policy enforcement in AppCache.
    - CVE-2020-6400: Inappropriate implementation in CORS.
    - CVE-2020-6401: Insufficient validation of untrusted input in Omnibox.
    - CVE-2020-6402: Insufficient policy enforcement in downloads.
    - CVE-2020-6403: Incorrect security UI in Omnibox.
    - CVE-2020-6404: Inappropriate implementation in Blink.
    - CVE-2020-6405: Out of bounds read in SQLite.
    - CVE-2020-6406: Use after free in audio.
    - CVE-2019-19923: Out of bounds memory access in SQLite.
    - CVE-2020-6408: Insufficient policy enforcement in CORS.
    - CVE-2020-6409: Inappropriate implementation in Omnibox.
    - CVE-2020-6410: Insufficient policy enforcement in navigation.
    - CVE-2020-6411: Insufficient validation of untrusted input in Omnibox.
    - CVE-2020-6412: Insufficient validation of untrusted input in Omnibox.
    - CVE-2020-6413: Inappropriate implementation in Blink.
    - CVE-2020-6414: Insufficient policy enforcement in Safe Browsing.
    - CVE-2020-6415: Inappropriate implementation in JavaScript.
    - CVE-2020-6416: Insufficient data validation in streams.
    - CVE-2020-6417: Inappropriate implementation in installer.
  * debian/control: add nodejs-mozilla as a build dependency
  * debian/patches/disable-sse2: refreshed
  * debian/patches/fix-extra-arflags.patch: refreshed
  * debian/patches/node-use-system-wide.patch: added
  * debian/patches/set-rpath-on-chromium-executables.patch: refreshed
  * debian/patches/suppress-newer-clang-warning-flags.patch: refreshed
  * debian/patches/widevine-enable-version-string.patch: refreshed
  * debian/tests/html5test: update test expectations for the removal
    of the Web Components V0 APIs
    (see https://www.chromestatus.com/feature/5144752345317376)

 -- Olivier Tilloy <email address hidden> Wed, 05 Feb 2020 10:50:42 +0100

CVE-2020-6381 Integer overflow in JavaScript in Google Chrome on ChromeOS and Android prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap c
CVE-2020-6382 Type confusion in JavaScript in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HT
CVE-2019-18197 In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances. If the relevant memory area happened to
CVE-2019-19926 multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE:
CVE-2020-6385 Insufficient policy enforcement in storage in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass site isolation via a crafted HT
CVE-2019-19880 exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER B
CVE-2019-19925 zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.
CVE-2020-6387 Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted v
CVE-2020-6388 Out of bounds access in WebAudio in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafte
CVE-2020-6389 Out of bounds write in WebRTC in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted v
CVE-2020-6390 Out of bounds memory access in streams in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a
CVE-2020-6391 Insufficient validation of untrusted input in Blink in Google Chrome prior to 80.0.3987.87 allowed a local attacker to bypass content security policy
CVE-2020-6392 Insufficient policy enforcement in extensions in Google Chrome prior to 80.0.3987.87 allowed an attacker who convinced a user to install a malicious
CVE-2020-6393 Insufficient policy enforcement in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to leak cross-origin data via a crafted HTM
CVE-2020-6394 Insufficient policy enforcement in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass content security policy via a cra
CVE-2020-6395 Out of bounds read in JavaScript in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to obtain potentially sensitive information from pr
CVE-2020-6396 Inappropriate implementation in Skia in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox (URL bar)
CVE-2020-6397 Inappropriate implementation in sharing in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to spoof security UI via a crafted HTML page
CVE-2020-6398 Use of uninitialized data in PDFium in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a cra
CVE-2020-6399 Insufficient policy enforcement in AppCache in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to leak cross-origin data via a crafted
CVE-2020-6400 Inappropriate implementation in CORS in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to leak cross-origin data via a crafted HTML pa
CVE-2020-6401 Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via
CVE-2020-6402 Insufficient policy enforcement in downloads in Google Chrome on OS X prior to 80.0.3987.87 allowed an attacker who convinced a user to install a mal
CVE-2020-6403 Incorrect implementation in Omnibox in Google Chrome on iOS prior to 80.0.3987.87 allowed a remote attacker to spoof the contents of the Omnibox (URL
CVE-2020-6404 Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a local attacker to potentially exploit heap corruption via craf
CVE-2020-6405 Out of bounds read in SQLite in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to obtain potentially sensitive information from proces
CVE-2020-6406 Use after free in audio in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML pa
CVE-2019-19923 flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view.
CVE-2020-6408 Insufficient policy enforcement in CORS in Google Chrome prior to 80.0.3987.87 allowed a local attacker to obtain potentially sensitive information v
CVE-2020-6409 Inappropriate implementation in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker who convinced the user to enter a URI to byp
CVE-2020-6410 Insufficient policy enforcement in navigation in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to confuse the user via a crafted doma
CVE-2020-6411 Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via
CVE-2020-6412 Insufficient validation of untrusted input in Omnibox in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to perform domain spoofing via
CVE-2020-6413 Inappropriate implementation in Blink in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass HTML validators via a crafted HTML p
CVE-2020-6414 Insufficient policy enforcement in Safe Browsing in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to bypass navigation restrictions v
CVE-2020-6415 Inappropriate implementation in JavaScript in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption vi
CVE-2020-6416 Insufficient data validation in streams in Google Chrome prior to 80.0.3987.87 allowed a remote attacker to potentially exploit heap corruption via a
CVE-2020-6417 Inappropriate implementation in installer in Google Chrome prior to 80.0.3987.87 allowed a local attacker to execute arbitrary code via a crafted reg



About   -   Send Feedback to @ubuntu_updates