AVG-1478 log

Package vivaldi
Status Fixed
Severity Critical
Type multiple issues
Affected 3.5.2115.87-2
Fixed 3.6.2165.36-1
Current 7.0.3495.27-1 [extra]
Ticket None
Created Tue Jan 19 20:35:23 2021
Issue Severity Remote Type Description
CVE-2021-21148 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the V8 component of the Chromium browser before version 88.0.4324.150.
CVE-2021-21147 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Skia component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21146 High Yes Arbitrary code execution
A use after free security issue was found in the Navigation component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21145 High Yes Arbitrary code execution
A use after free security issue was found in the Fonts component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21144 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Tab Groups component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21143 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Extensions component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21142 Critical Yes Arbitrary code execution
A use after free security issue was found in the Payments component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21141 Low Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21140 Low Yes Arbitrary code execution
An uninitialized use security issue was found in the USB component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21139 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the iframe sandbox component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21138 Low Yes Arbitrary code execution
A use after free security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21137 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21136 Low Yes Insufficient validation
An insufficient policy enforcement security issue was found in the WebView component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21135 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Performance API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21134 Medium Yes Content spoofing
An incorrect security UI security issue was found in the Page Info component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21133 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the Downloads component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21132 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21131 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21130 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21129 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21128 Medium Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Blink component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21127 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the extensions component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21126 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the extensions component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21125 High Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21124 High Yes Arbitrary code execution
A potential use after free security issue was found in the Speech Recognizer component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21123 High Yes Insufficient validation
An insufficient data validation security issue was found in the File System component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21122 High Yes Arbitrary code execution
A use after free security issue was found in the Blink component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21121 High Yes Arbitrary code execution
A use after free security issue was found in the Omnibox component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21120 High Yes Arbitrary code execution
A use after free security issue was found in the WebSQL component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21119 High Yes Arbitrary code execution
A use after free security issue was found in the Media component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21118 High Yes Insufficient validation
An insufficient data validation security issue was found in the V8 component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21117 Critical Yes Insufficient validation
An insufficient policy enforcement security issue was found in the Cryptohome component of the Chromium browser before version 88.0.4324.96.
CVE-2020-16044 Critical Yes Arbitrary code execution
A security issue was found in Firefox before 84.0.2, Thunderbird before 78.6.1 and Chromium before 88.0.4324.96. A malicious peer could have modified a...
Date Advisory Package Type
06 Feb 2021 ASA-202102-4 vivaldi multiple issues