AVG-2202 log

Package vivaldi
Status Fixed
Severity High
Type multiple issues
Affected 4.0.2312.41-1
Fixed 4.1.2369.11-1
Current 7.0.3495.15-1 [extra]
Ticket None
Created Wed Jul 21 20:47:15 2021
Issue Severity Remote Type Description
CVE-2021-30589 Low Yes Insufficient validation
An insufficient validation of untrusted input security issue has been found in the Sharing component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30588 Low Yes Incorrect calculation
A type confusion security issue has been found in the V8 component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30585 Medium Yes Arbitrary code execution
A use after free security issue has been found in the sensor handling component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30584 Medium Yes Content spoofing
An incorrect security UI security issue has been found in the Downloads component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30582 Medium Yes Incorrect calculation
An inappropriate implementation security issue has been found in the Animation component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30581 Medium Yes Arbitrary code execution
A use after free security issue has been found in the DevTools component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30579 Medium Yes Arbitrary code execution
A use after free security issue has been found in the UI framework component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30578 Medium Yes Arbitrary code execution
An uninitialized use security issue has been found in the Media component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30576 Medium Yes Arbitrary code execution
A use after free security issue has been found in the DevTools component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30575 Medium Yes Information disclosure
An out of bounds read security issue has been found in the Autofill component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30574 High Yes Arbitrary code execution
A use after free security issue has been found in the protocol handling component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30573 High Yes Arbitrary code execution
A use after free security issue has been found in the GPU component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30572 High Yes Arbitrary code execution
A use after free security issue has been found in the Autofill component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30571 High Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the DevTools component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30569 High Yes Arbitrary code execution
A use after free security issue has been found in the sqlite component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30568 High Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the WebGL component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30567 High Yes Arbitrary code execution
A use after free security issue has been found in the DevTools component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30566 High Yes Arbitrary code execution
A stack buffer overflow security issue has been found in the Printing component of the Chromium browser engine before version 92.0.4515.107.
CVE-2021-30565 High Yes Arbitrary code execution
An out of bounds write security issue has been found in the Tab Groups component of the Chromium browser engine before version 92.0.4515.107.
Date Advisory Package Type
28 Jul 2021 ASA-202107-74 vivaldi multiple issues
References
https://vivaldi.com/blog/desktop/minor-update-6-for-desktop-4-0/
https://vivaldi.com/blog/desktop/vivaldi-4-1-rc-1-desktop/
Notes
Vivaldi version 4.0.2312.41 is based on Chromium version 91.0.4472.166, Vivaldi version 4.1.2369.11 is based on Chromium version 92.0.4515.126 according to the references.