https://crbug.com/1184562

https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_14.html

DSA-4906

GLSA-202104-08

FEDORA-2021-c3754414e7

FEDORA-2021-ff893e12c5

FEDORA-2021-35d2bb4627

This update for chromium fixes the following issues :

  - Chromium was updated to 90.0.4430.93     (boo#1184764,boo#1185047,boo#1185398)

  - CVE-2021-21227: Insufficient data validation in V8. 

  - CVE-2021-21232: Use after free in Dev Tools. 

  - CVE-2021-21233: Heap buffer overflow in ANGLE.

  - CVE-2021-21228: Insufficient policy enforcement in     extensions.

  - CVE-2021-21229: Incorrect security UI in downloads.

  - CVE-2021-21230: Type Confusion in V8. 

  - CVE-2021-21231: Insufficient data validation in V8.

  - CVE-2021-21222: Heap buffer overflow in V8

  - CVE-2021-21223: Integer overflow in Mojo

  - CVE-2021-21224: Type Confusion in V8

  - CVE-2021-21225: Out of bounds memory access in V8

  - CVE-2021-21226: Use after free in navigation

  - CVE-2021-21201: Use after free in permissions

  - CVE-2021-21202: Use after free in extensions

  - CVE-2021-21203: Use after free in Blink

  - CVE-2021-21204: Use after free in Blink

  - CVE-2021-21205: Insufficient policy enforcement in     navigation

  - CVE-2021-21221: Insufficient validation of untrusted     input in Mojo

  - CVE-2021-21207: Use after free in IndexedDB

  - CVE-2021-21208: Insufficient data validation in QR     scanner

  - CVE-2021-21209: Inappropriate implementation in storage

  - CVE-2021-21210: Inappropriate implementation in Network

  - CVE-2021-21211: Inappropriate implementation in     Navigatio 

  - CVE-2021-21212: Incorrect security UI in Network Config     UI

  - CVE-2021-21213: Use after free in WebMIDI

The remote host is affected by the vulnerability described in GLSA-202104-08 (Chromium, Google Chrome: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Chromium and Google       Chrome. Please review the CVE identifiers referenced below for details.
  Impact :

    Please review the referenced CVE identifiers for details.
  Workaround :

    There is no known workaround at this time.

Several vulnerabilities have been discovered in the chromium web browser.

  - CVE-2021-21201     Gengming Liu and Jianyu Chen discovered a use-after-free     issue.

  - CVE-2021-21202     David Erceg discovered a use-after-free issue in     extensions.

  - CVE-2021-21203     asnine discovered a use-after-free issue in     Blink/Webkit.

  - CVE-2021-21204     Tsai-Simek, Jeanette Ulloa, and Emily Voigtlander     discovered a use-after-free issue in Blink/Webkit.

  - CVE-2021-21205     Alison Huffman discovered a policy enforcement error.

  - CVE-2021-21207     koocola and Nan Wang discovered a use-after-free in the     indexed database.

  - CVE-2021-21208     Ahmed Elsobky discovered a data validation error in the     QR code scanner.

  - CVE-2021-21209     Tom Van Goethem discovered an implementation error in     the Storage API.

  - CVE-2021-21210     @bananabr discovered an error in the networking     implementation.

  - CVE-2021-21211     Akash Labade discovered an error in the navigation     implementation.

  - CVE-2021-21212     Hugo Hue and Sze Yui Chau discovered an error in the     network configuration user interface.

  - CVE-2021-21213     raven discovered a use-after-free issue in the WebMIDI     implementation.

  - CVE-2021-21214     A use-after-free issue was discovered in the networking     implementation.

  - CVE-2021-21215     Abdulrahman Alqabandi discovered an error in the     Autofill feature.

  - CVE-2021-21216     Abdulrahman Alqabandi discovered an error in the     Autofill feature.

  - CVE-2021-21217     Zhou Aiting discovered use of uninitialized memory in     the pdfium library.

  - CVE-2021-21218     Zhou Aiting discovered use of uninitialized memory in     the pdfium library.

  - CVE-2021-21219     Zhou Aiting discovered use of uninitialized memory in     the pdfium library.

  - CVE-2021-21221     Guang Gong discovered insufficient validation of     untrusted input.

  - CVE-2021-21222     Guang Gong discovered a buffer overflow issue in the v8     JavaScript library.

  - CVE-2021-21223     Guang Gong discovered an integer overflow issue.

  - CVE-2021-21224     Jose Martinez discovered a type error in the v8     JavaScript library.

  - CVE-2021-21225     Brendon Tiszka discovered an out-of-bounds memory access     issue in the v8 JavaScript library.

  - CVE-2021-21226     Brendon Tiszka discovered a use-after-free issue in the     networking implementation.

Chrome Releases reports :

This release contains 37 security fixes, including :

- [1025683] High CVE-2021-21201: Use after free in permissions.
Reported by Gengming Liu, Jianyu Chen at Tencent Keen Security Lab on 2019-11-18

- [1188889] High CVE-2021-21202: Use after free in extensions.
Reported by David Erceg on 2021-03-16

- [1192054] High CVE-2021-21203: Use after free in Blink. Reported by asnine on 2021-03-24

- [1189926] High CVE-2021-21204: Use after free in Blink. Reported by Chelse Tsai-Simek, Jeanette Ulloa, and Emily Voigtlander of Seesaw on 2021-03-19

- [1165654] High CVE-2021-21205: Insufficient policy enforcement in navigation. Reported by Alison Huffman, Microsoft Browser Vulnerability Research on 2021-01-12

- [1195333] High CVE-2021-21221: Insufficient validation of untrusted input in Mojo. Reported by Guang Gong of Alpha Lab, Qihoo 360 on 2021-04-02

- [1185732] Medium CVE-2021-21207: Use after free in IndexedDB.
Reported by koocola (@alo_cook) and Nan Wang (@eternalsakura13) of 360 Alpha Lab on 2021-03-08

- [1039539] Medium CVE-2021-21208: Insufficient data validation in QR scanner. Reported by Ahmed Elsobky (@0xsobky) on 2020-01-07

- [1143526] Medium CVE-2021-21209: Inappropriate implementation in storage. Reported by Tom Van Goethem (@tomvangoethem) on 2020-10-29

- [1184562] Medium CVE-2021-21210: Inappropriate implementation in Network. Reported by @bananabr on 2021-03-04

- [1103119] Medium CVE-2021-21211: Inappropriate implementation in Navigation. Reported by Akash Labade (m0ns7er) on 2020-07-08

- [1145024] Medium CVE-2021-21212: Incorrect security UI in Network Config UI. Reported by Hugo Hue and Sze Yiu Chau of the Chinese University of Hong Kong on 2020-11-03

- [1161806] Medium CVE-2021-21213: Use after free in WebMIDI. Reported by raven (@raid_akame) on 2020-12-25

- [1170148] Medium CVE-2021-21214: Use after free in Network API.
Reported by Anonymous on 2021-01-24

- [1172533] Medium CVE-2021-21215: Inappropriate implementation in Autofill. Reported by Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research on 2021-01-30

- [1173297] Medium CVE-2021-21216: Inappropriate implementation in Autofill. Reported by Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research on 2021-02-02

- [1166462] Low CVE-2021-21217: Uninitialized Use in PDFium. Reported by Zhou Aiting (@zhouat1) of Qihoo 360 Vulcan Team on 2021-01-14

- [1166478] Low CVE-2021-21218: Uninitialized Use in PDFium. Reported by Zhou Aiting (@zhouat1) of Qihoo 360 Vulcan Team on 2021-01-14

- [1166972] Low CVE-2021-21219: Uninitialized Use in PDFium. Reported by Zhou Aiting (@zhouat1) of Qihoo 360 Vulcan Team on 2021-01-15

The version of Microsoft Edge installed on the remote Windows host is prior to 90.0.818.39. It is, therefore, affected by multiple vulnerabilities as referenced in the April 15, 2021 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote macOS host is prior to 90.0.4430.72. It is, therefore, affected by multiple vulnerabilities as referenced in the 2021_04_stable-channel-update-for-desktop_14 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Google Chrome installed on the remote Windows host is prior to 90.0.4430.72. It is, therefore, affected by multiple vulnerabilities as referenced in the 2021_04_stable-channel-update-for-desktop_14 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
149603	openSUSE Security Update : Chromium (openSUSE-2021-629)	Nessus	SuSE Local Security Checks	high
149223	GLSA-202104-08 : Chromium, Google Chrome: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
149082	Debian DSA-4906-1 : chromium - security update	Nessus	Debian Local Security Checks	critical
148704	FreeBSD : chromium -- multiple vulnerabilities (f3d86439-9def-11eb-97a0-e09467587c17)	Nessus	FreeBSD Local Security Checks	high
148693	Microsoft Edge (Chromium) < 90.0.818.39 Multiple Vulnerabilities	Nessus	Windows	high
148559	Google Chrome < 90.0.4430.72 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	high
148558	Google Chrome < 90.0.4430.72 Multiple Vulnerabilities	Nessus	Windows	high

CVE-2021-21210

medium

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

CVSS v3

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Tenable Plugins

high

high

critical

high

high

high

high