Security update for chromium SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2020:1021-1 Final 1 1 2020-07-20T14:27:17Z current 2020-07-20T14:27:17Z 2020-07-20T14:27:17Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for chromium This update for chromium fixes the following issues: - Update to 84.0.4147.89 boo#1174189: * Critical CVE-2020-6510: Heap buffer overflow in background fetch. * High CVE-2020-6511: Side-channel information leakage in content security policy. * High CVE-2020-6512: Type Confusion in V8. * High CVE-2020-6513: Heap buffer overflow in PDFium. * High CVE-2020-6514: Inappropriate implementation in WebRTC. * High CVE-2020-6515: Use after free in tab strip. * High CVE-2020-6516: Policy bypass in CORS. * High CVE-2020-6517: Heap buffer overflow in history. * Medium CVE-2020-6518: Use after free in developer tools. * Medium CVE-2020-6519: Policy bypass in CSP. * Medium CVE-2020-6520: Heap buffer overflow in Skia. * Medium CVE-2020-6521: Side-channel information leakage in autofill. * Medium CVE-2020-6522: Inappropriate implementation in external protocol handlers. * Medium CVE-2020-6523: Out of bounds write in Skia. * Medium CVE-2020-6524: Heap buffer overflow in WebAudio. * Medium CVE-2020-6525: Heap buffer overflow in Skia. * Low CVE-2020-6526: Inappropriate implementation in iframe sandbox. * Low CVE-2020-6527: Insufficient policy enforcement in CSP. * Low CVE-2020-6528: Incorrect security UI in basic auth. * Low CVE-2020-6529: Inappropriate implementation in WebRTC. * Low CVE-2020-6530: Out of bounds memory access in developer tools. * Low CVE-2020-6531: Side-channel information leakage in scroll to text. * Low CVE-2020-6533: Type Confusion in V8. * Low CVE-2020-6534: Heap buffer overflow in WebRTC. * Low CVE-2020-6535: Insufficient data validation in WebUI. * Low CVE-2020-6536: Incorrect security UI in PWAs. - Use bundled xcb-proto as we need to generate py2 bindings - Try to fix non-wayland build for Leap builds The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2020-1021 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html E-Mail link for openSUSE-SU-2020:1021-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1174189 SUSE Bug 1174189 https://www.suse.com/security/cve/CVE-2020-6510/ SUSE CVE CVE-2020-6510 page https://www.suse.com/security/cve/CVE-2020-6511/ SUSE CVE CVE-2020-6511 page https://www.suse.com/security/cve/CVE-2020-6512/ SUSE CVE CVE-2020-6512 page https://www.suse.com/security/cve/CVE-2020-6513/ SUSE CVE CVE-2020-6513 page https://www.suse.com/security/cve/CVE-2020-6514/ SUSE CVE CVE-2020-6514 page https://www.suse.com/security/cve/CVE-2020-6515/ SUSE CVE CVE-2020-6515 page https://www.suse.com/security/cve/CVE-2020-6516/ SUSE CVE CVE-2020-6516 page https://www.suse.com/security/cve/CVE-2020-6517/ SUSE CVE CVE-2020-6517 page https://www.suse.com/security/cve/CVE-2020-6518/ SUSE CVE CVE-2020-6518 page https://www.suse.com/security/cve/CVE-2020-6519/ SUSE CVE CVE-2020-6519 page https://www.suse.com/security/cve/CVE-2020-6520/ SUSE CVE CVE-2020-6520 page https://www.suse.com/security/cve/CVE-2020-6521/ SUSE CVE CVE-2020-6521 page https://www.suse.com/security/cve/CVE-2020-6522/ SUSE CVE CVE-2020-6522 page https://www.suse.com/security/cve/CVE-2020-6523/ SUSE CVE CVE-2020-6523 page https://www.suse.com/security/cve/CVE-2020-6524/ SUSE CVE CVE-2020-6524 page https://www.suse.com/security/cve/CVE-2020-6525/ SUSE CVE CVE-2020-6525 page https://www.suse.com/security/cve/CVE-2020-6526/ SUSE CVE CVE-2020-6526 page https://www.suse.com/security/cve/CVE-2020-6527/ SUSE CVE CVE-2020-6527 page https://www.suse.com/security/cve/CVE-2020-6528/ SUSE CVE CVE-2020-6528 page https://www.suse.com/security/cve/CVE-2020-6529/ SUSE CVE CVE-2020-6529 page https://www.suse.com/security/cve/CVE-2020-6530/ SUSE CVE CVE-2020-6530 page https://www.suse.com/security/cve/CVE-2020-6531/ SUSE CVE CVE-2020-6531 page https://www.suse.com/security/cve/CVE-2020-6533/ SUSE CVE CVE-2020-6533 page https://www.suse.com/security/cve/CVE-2020-6534/ SUSE CVE CVE-2020-6534 page https://www.suse.com/security/cve/CVE-2020-6535/ SUSE CVE CVE-2020-6535 page https://www.suse.com/security/cve/CVE-2020-6536/ SUSE CVE CVE-2020-6536 page openSUSE Leap 15.1 chromedriver-84.0.4147.89-lp151.2.109.1 chromium-84.0.4147.89-lp151.2.109.1 chromedriver-84.0.4147.89-lp151.2.109.1 as a component of openSUSE Leap 15.1 chromium-84.0.4147.89-lp151.2.109.1 as a component of openSUSE Leap 15.1 Heap buffer overflow in background fetch in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6510 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6510.html CVE-2020-6510 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Information leak in content security policy in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2020-6511 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6511.html CVE-2020-6511 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6512 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6512.html CVE-2020-6512 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CVE-2020-6513 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6513.html CVE-2020-6513 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to potentially exploit heap corruption via a crafted SCTP stream. CVE-2020-6514 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6514.html CVE-2020-6514 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 https://bugzilla.suse.com/1174538 SUSE Bug 1174538 Use after free in tab strip in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6515 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6515.html CVE-2020-6515 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Policy bypass in CORS in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2020-6516 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6516.html CVE-2020-6516 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Heap buffer overflow in history in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6517 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6517.html CVE-2020-6517 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Use after free in developer tools in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had convinced the user to use developer tools to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6518 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6518.html CVE-2020-6518 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Policy bypass in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass content security policy via a crafted HTML page. CVE-2020-6519 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6519.html CVE-2020-6519 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6520 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6520.html CVE-2020-6520 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Side-channel information leakage in autofill in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. CVE-2020-6521 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6521.html CVE-2020-6521 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Inappropriate implementation in external protocol handlers in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. CVE-2020-6522 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6522.html CVE-2020-6522 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Out of bounds write in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6523 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6523.html CVE-2020-6523 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Heap buffer overflow in WebAudio in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6524 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6524.html CVE-2020-6524 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Heap buffer overflow in Skia in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6525 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6525.html CVE-2020-6525 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Inappropriate implementation in iframe sandbox in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. CVE-2020-6526 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6526.html CVE-2020-6526 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Insufficient policy enforcement in CSP in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to bypass content security policy via a crafted HTML page. CVE-2020-6527 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6527.html CVE-2020-6527 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Incorrect security UI in basic auth in Google Chrome on iOS prior to 84.0.4147.89 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. CVE-2020-6528 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6528.html CVE-2020-6528 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Inappropriate implementation in WebRTC in Google Chrome prior to 84.0.4147.89 allowed an attacker in a privileged network position to leak cross-origin data via a crafted HTML page. CVE-2020-6529 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6529.html CVE-2020-6529 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Out of bounds memory access in developer tools in Google Chrome prior to 84.0.4147.89 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension. CVE-2020-6530 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6530.html CVE-2020-6530 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Side-channel information leakage in scroll to text in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to leak cross-origin data via a crafted HTML page. CVE-2020-6531 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6531.html CVE-2020-6531 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Type Confusion in V8 in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6533 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6533.html CVE-2020-6533 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Heap buffer overflow in WebRTC in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2020-6534 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6534.html CVE-2020-6534 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Insufficient data validation in WebUI in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had compromised the renderer process to inject scripts or HTML into a privileged page via a crafted HTML page. CVE-2020-6535 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6535.html CVE-2020-6535 https://bugzilla.suse.com/1174189 SUSE Bug 1174189 Incorrect security UI in PWAs in Google Chrome prior to 84.0.4147.89 allowed a remote attacker who had persuaded the user to install a PWA to spoof the contents of the Omnibox (URL bar) via a crafted PWA. CVE-2020-6536 openSUSE Leap 15.1:chromedriver-84.0.4147.89-lp151.2.109.1 openSUSE Leap 15.1:chromium-84.0.4147.89-lp151.2.109.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/opensuse-security-announce/2020-07/msg00052.html https://www.suse.com/security/cve/CVE-2020-6536.html CVE-2020-6536 https://bugzilla.suse.com/1174189 SUSE Bug 1174189