ASA-202003-1 log original external raw

[ASA-202003-1] chromium: access restriction bypass
Arch Linux Security Advisory ASA-202003-1 ========================================= Severity: High Date : 2020-03-04 CVE-ID : CVE-2020-6420 Package : chromium Type : access restriction bypass Remote : Yes Link : https://security.archlinux.org/AVG-1107 Summary ======= The package chromium before version 80.0.3987.132-1 is vulnerable to access restriction bypass. Resolution ========== Upgrade to 80.0.3987.132-1. # pacman -Syu "chromium>=80.0.3987.132-1" The problem has been fixed upstream in version 80.0.3987.132. Workaround ========== None. Description =========== An insufficient policy enforcement issue has been found in the media component of chromium before 80.0.3987.132. Impact ====== A remote attacker can bypass security restrictions. References ========== https://chromereleases.googleblog.com/2020/03/stable-channel-update-for-desktop.html https://crbug.com/1050996 https://security.archlinux.org/CVE-2020-6420