http://packetstormsecurity.com/files/162087/Google-Chrome-86.0.4240-V8-Remote-Code-Execution.html

http://packetstormsecurity.com/files/162106/Google-Chrome-86.0.4240-V8-Remote-Code-Execution.html

http://packetstormsecurity.com/files/162144/Google-Chrome-SimplfiedLowering-Integer-Overflow.html

https://chromereleases.googleblog.com/2020/12/stable-channel-update-for-desktop.html

https://crbug.com/1150649

This update for opera fixes the following issues :

  - Update to version 73.0.3856.284

  - CHR-8225 Update chromium on desktop-stable-87-3856 to     87.0.4280.88

  - DNA-88454 Background of snap area above visible scrolled     viewport is not captured

  - DNA-89749 Implement client_capabilities support for Flow     / Sync

  - DNA-89810 Opera no longer autoselects full url/address     bar when clicked

  - DNA-89923 [Snap] Emojis look grayed out

  - DNA-90060 Make gesture events work with search-in-tabs     feature

  - DNA-90168 Display SD suggestions titles

  - DNA-90176 Player doesn&rsquo;t show music service to     choose on Welcome page

  - DNA-90343 [Mac] Cmd+C doesn&rsquo;t copy snapshot

  - DNA-90538 Crash at extensions::CommandService::
    GetExtensionActionCommand(std::__1::basic_string const&,     extensions::ActionInfo::Type,     extensions::CommandService:: QueryType,     extensions::Command*, bool*)

  - The update to chromium 87.0.4280.88 fixes following     issues: CVE-2020-16037, CVE-2020-16038, CVE-2020-16039,     CVE-2020-16040, CVE-2020-16041, CVE-2020-16042

  - Update to version 73.0.3856.257

  - DNA-89918 #enable-force-dark flag doesn&rsquo;t work     anymore

  - DNA-90061 Clicking on video&rsquo;s progress bar breaks     autopausing

  - DNA-90079 [BigSur] Blank pages

  - DNA-90154 Crash at extensions::CommandService::
    GetExtensionActionCommand(std::__1::basic_string const&,     extensions::ActionInfo::Type,     extensions::CommandService:: QueryType,     extensions::Command*, bool*)

  - Complete Opera 73.0 changelog at:
    https://blogs.opera.com/desktop/changelog-for-73/

Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure.

Update to 87.0.4280.88. As with pretty much every chromium release ever, this fixes some security bugs. This batch is :

CVE-2020-16037 CVE-2020-16038 CVE-2020-16039 CVE-2020-16040 CVE-2020-16041 CVE-2020-16042

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for chromium fixes the following issues :

Update to 87.0.4280.88 boo#1179576

  - CVE-2020-16037: Use after free in clipboard

  - CVE-2020-16038: Use after free in media

  - CVE-2020-16039: Use after free in extensions

  - CVE-2020-16040: Insufficient data validation in V8

  - CVE-2020-16041: Out of bounds read in networking

  - CVE-2020-16042: Uninitialized Use in V8

The version of Microsoft Edge installed on the remote Windows host is prior to 87.0.664.57. It is, therefore, affected by multiple vulnerabilities as referenced in the ADV200002-12-7-2020 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

This update for chromium fixes the following issues :

Update to 87.0.4280.88 (boo#1179576)

  - CVE-2020-16037: Use after free in clipboard

  - CVE-2020-16038: Use after free in media

  - CVE-2020-16039: Use after free in extensions

  - CVE-2020-16040: Insufficient data validation in V8

  - CVE-2020-16041: Out of bounds read in networking

  - CVE-2020-16042: Uninitialized Use in V8

Chrome Releases reports :

This release contains 8 security fixes, including :

- [1142331] High CVE-2020-16037: Use after free in clipboard. Reported by Ryoya Tsukasaki on 2020-10-26

- [1138683] High CVE-2020-16038: Use after free in media. Reported by Khalil Zhani on 2020-10-14

- [1149177] High CVE-2020-16039: Use after free in extensions.
Reported by Anonymous on 2020-11-15

- [1150649] High CVE-2020-16040: Insufficient data validation in V8.
Reported by Lucas Pinheiro, Microsoft Browser Vulnerability Research on 2020-11-19

- [1151865] Medium CVE-2020-16041: Out of bounds read in networking.
Reported by Sergei Glazunov and Mark Brand of Google Project Zero on 2020-11-23

- [1151890] Medium CVE-2020-16042: Uninitialized Use in V8. Reported by Andre Bargull on 2020-11-2

The remote host is affected by the vulnerability described in GLSA-202012-05 (Chromium, Google Chrome: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Chromium and Google       Chrome. Please review the CVE identifiers referenced below for details.
  Impact :

    Please review the referenced CVE identifiers for details.
  Workaround :

    There is no known workaround at this time.

The version of Google Chrome installed on the remote Windows host is prior to 87.0.4280.88. It is, therefore, affected by multiple vulnerabilities as referenced in the 2020_12_stable-channel-update-for-desktop advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote macOS host is prior to 87.0.4280.88. It is, therefore, affected by multiple vulnerabilities as referenced in the 2020_12_stable-channel-update-for-desktop advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
145375	openSUSE Security Update : opera (openSUSE-2020-2360)	Nessus	SuSE Local Security Checks	high
145317	openSUSE Security Update : opera (openSUSE-2020-2359)	Nessus	SuSE Local Security Checks	high
144672	Debian DSA-4824-1 : chromium - security update	Nessus	Debian Local Security Checks	high
144487	Fedora 32 : chromium (2020-5b9c42f1b9)	Nessus	Fedora Local Security Checks	high
144036	Fedora 33 : chromium (2020-f43efd09e8)	Nessus	Fedora Local Security Checks	high
144020	openSUSE Security Update : chromium (openSUSE-2020-2216)	Nessus	SuSE Local Security Checks	high
143588	Microsoft Edge (Chromium) < 87.0.664.57 Multiple Vulnerabilities	Nessus	Windows	high
143545	openSUSE Security Update : chromium (openSUSE-2020-2181)	Nessus	SuSE Local Security Checks	high
143517	FreeBSD : chromium -- multiple vulnerabilities (01ffd06a-36ed-11eb-b655-3065ec8fd3ec)	Nessus	FreeBSD Local Security Checks	high
143495	GLSA-202012-05 : Chromium, Google Chrome: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
143471	Google Chrome < 87.0.4280.88 Multiple Vulnerabilities	Nessus	Windows	high
143470	Google Chrome < 87.0.4280.88 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	high

CVE-2020-16040

MEDIUM

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

CVSS v3

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

high

high

high

high

high

high

high

high

high