AVG-2453 log

Package vivaldi
Status Fixed
Severity High
Type multiple issues
Affected 4.3.2439.39-1
Fixed 4.3.2439.44-1
Current 6.6.3271.55-1 [extra]
Ticket None
Created Fri Oct 8 11:02:25 2021
Issue Severity Remote Type Description
CVE-2021-37980 High Yes Sandbox escape
An inappropriate implementation security issue has been found in the Sandbox component of the Chromium browser engine before version 94.0.4606.81.
CVE-2021-37979 High Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the WebRTC component of the Chromium browser engine before version 94.0.4606.81.
CVE-2021-37978 High Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the Blink component of the Chromium browser engine before version 94.0.4606.81.
CVE-2021-37977 High Yes Arbitrary code execution
A use after free security issue has been found in the Garbage Collection component of the Chromium browser engine before version 94.0.4606.81.
References
https://vivaldi.com/blog/vivaldi-gets-more-private-delivers-an-all-new-capture-pwa-support/
https://vivaldi.com/blog/desktop/minor-update-4-3/
Notes
Vivaldi version 4.3.2439.39 is based on Chromium version 94.0.4606.72, Vivaldi version 4.3.2439.44 is based on Chromium version 94.0.4606.81 according to the references.