AVG-1088 log

Package chromium
Status Fixed
Severity Critical
Type multiple issues
Affected 79.0.3945.117-1
Fixed 79.0.3945.130-1
Current 131.0.6778.139-1 [extra]
Ticket None
Created Fri Jan 17 08:33:45 2020
Issue Severity Remote Type Description
CVE-2020-6380 High Yes Insufficient validation
An extension message verification error has been found in the chromium browser before 79.0.3945.130.
CVE-2020-6379 High Yes Arbitrary code execution
A use-after-free vulnerability has been found in the speech recognizer component of the chromium browser before 79.0.3945.130.
CVE-2020-6378 Critical Yes Arbitrary code execution
A use-after-free vulnerability has been found in the speech recognizer component of the chromium browser before 79.0.3945.130.
Date Advisory Package Type
17 Jan 2020 ASA-202001-5 chromium multiple issues
References
https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop_16.html