Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 80.0.3987.149. Security Fix: * chromium-browser: Use after free in WebGL * chromium-browser: Use after free in media * chromium-browser: Insufficient policy enforcement in extensions * chromium-browser: Inappropriate implementation in V8 * chromium-browser: Use after free in audio * chromium-b ...
The host is missing a high severity security update according to Mozilla advisory, MFSA2020-08. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the browser.
The host is missing a high severity security update according to Mozilla advisory, MFSA2020-09. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the browser.
Safari before 13.1.1 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.5, Mozilla Firefox 74, Mozilla Firefox ESR 68.6, Mozilla Thunderbird 68.6, Google Chrome 80.0.3987.149 and Microsoft Edge (Chromium based) 80.0.361.69: The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters however, the two functions handled parameter bounds differently, resul ...
The host is missing a high severity security update according to Mozilla advisory, MFSA2020-08. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the browser.
The host is missing a high severity security update according to Mozilla advisory, MFSA2020-09. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the browser.
Mozilla Firefox 74, Mozilla Firefox ESR 68.6, Mozilla Thunderbird 68.6, Google Chrome 80.0.3987.149 and Microsoft Edge 80.0.3987.149: The inputs to sctp_load_addresses_from_init are verified by sctp_arethere_unrecognized_parameters however, the two functions handled parameter bounds differently, resulting in out of bounds reads when parameters are partially outside a chunk.
The host is missing a high severity security update according to Mozilla advisory, MFSA2020-10. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service.
The host is missing a high security update according to Mozilla advisory, MFSA2020-10. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows remote attackers to crash the service.