** Changed in: chromium-browser (Debian)
Status: Unknown => Fix Released
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to chromium-browser in Ubuntu.
https://bugs.launchpad.net/bugs/1860872
Title:
Security problems
Status in chromium-browser package in Ubuntu:
Confirmed
Status in chromium-browser package in Debian:
Fix Released
Bug description:
chromium (79.0.3945.130-1) corrects:
* New upstream security release.
- CVE-2020-6377: Use after free in audio. Reported by Zhe Jin
- CVE-2020-6378: Use-after-free in speech recognizer. Reported by Antti
Levomäki and Christian Jalio
- CVE-2020-6379: Use-after-free in speech recognizer. Reported by Guang
Gong
- CVE-2020-6380: Extension message verification error. Reported by Sergei
Glazunov
- CVE-2019-13767: Use after free in media picker. Reported by Sergei
Glazunov
* Fix memory instrumentation singleton initialization errors caused by
tracing patch included in the previous upload (closes: #945920
https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1718620.html).
https://security-tracker.debian.org/tracker/source-package/chromium
https://metadata.ftp-master.debian.org/changelogs//main/c/chromium/chromium_79.0.3945.130-2_changelog
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/chromium-browser/+bug/1860872/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : desktop-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
