AVG-1167 log

Package chromium
Status Fixed
Severity High
Type multiple issues
Affected 81.0.4044.138-2
Fixed 83.0.4103.61-1
Current 85.0.4183.102-1 [extra]
Ticket None
Created Wed May 20 15:46:46 2020
Issue Severity Remote Type Description
CVE-2020-6491 Low Yes Content spoofing
A incorrect security UI security issue has been found in the site information component of the chromium browser before 83.0.4103.61.
CVE-2020-6490 Low Yes Insufficient validation
An insufficient data validation security issue has been found in the loader component of the chromium browser before 83.0.4103.61.
CVE-2020-6489 Low Yes Access restriction bypass
An inappropriate implementation security issue has been found in the developer tools component of the chromium browser before 83.0.4103.61.
CVE-2020-6488 Low Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the downloads component of the chromium browser before 83.0.4103.61.
CVE-2020-6487 Low Yes Access restriction bypass
A insufficient policy enforcement security issue has been found in the downloads component of the chromium browser before 83.0.4103.61.
CVE-2020-6486 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the navigations component of the chromium browser before 83.0.4103.61.
CVE-2020-6485 Medium Yes Insufficient validation
An insufficient data validation security issue has been found in the media router component of the chromium browser before 83.0.4103.61.
CVE-2020-6484 Medium Yes Insufficient validation
An insufficient data validation security issue has been found in the ChromeDriver component of the chromium browser before 83.0.4103.61.
CVE-2020-6483 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the payments component of the chromium browser before 83.0.4103.61.
CVE-2020-6482 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the developer tools component of the chromium browser before 83.0.4103.61.
CVE-2020-6481 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the URL formatting component of the chromium browser before 83.0.4103.61.
CVE-2020-6480 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the enterprise component of the chromium browser before 83.0.4103.61.
CVE-2020-6479 Medium Yes Access restriction bypass
An inappropriate implementation security issue has been found in the sharing component of the chromium browser before 83.0.4103.61.
CVE-2020-6478 Medium Yes Access restriction bypass
An inappropriate implementation security issue has been found in the full screen component of the chromium browser before 83.0.4103.61.
CVE-2020-6477 Medium No Access restriction bypass
An inappropriate implementation security issue has been found in the installer component of the chromium browser before 83.0.4103.61.
CVE-2020-6476 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the tab strip component of the chromium browser before 83.0.4103.61.
CVE-2020-6475 Medium Yes Content spoofing
An incorrect security UI security issue has been found in the full screen component of the chromium browser before 83.0.4103.61.
CVE-2020-6474 Medium Yes Arbitrary code execution
A use-after-free security issue has been found in the Blink component of the chromium browser before 83.0.4103.61.
CVE-2020-6473 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the Blink component of the chromium browser before 83.0.4103.61.
CVE-2020-6472 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the developer tools component of the chromium browser before 83.0.4103.61.
CVE-2020-6471 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the developer tools component of the chromium browser before 83.0.4103.61.
CVE-2020-6470 Medium Yes Insufficient validation
An insufficient validation of untrusted input security issue has been found in the clipboard component of the chromium browser before 83.0.4103.61
CVE-2020-6469 High Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the developer tools component of the chromium browser before 83.0.4103.61.
CVE-2020-6468 High Yes Arbitrary code execution
A type confusion security issue has been found in the V8 component of the chromium browser before 83.0.4103.61.
CVE-2020-6467 High Yes Arbitrary code execution
A use-after-free security issue has been found in the WebRTC component of the chromium browser before 83.0.4103.61
CVE-2020-6466 High Yes Arbitrary code execution
A use-after-free security issue has been found in the media component of the chromium browser before 83.0.4103.61.
CVE-2020-6465 High Yes Arbitrary code execution
A use-after-free security issue has been found in the reader mode of the chromium browser before 83.0.4103.61
Date Advisory Package Description
20 May 2020 ASA-202005-12 chromium multiple issues
References
https://chromereleases.googleblog.com/2020/05/stable-channel-update-for-desktop_19.html