AVG-2504 log

Package chromium
Status Fixed
Severity High
Type multiple issues
Affected 95.0.4638.54-2
Fixed 95.0.4638.69-1
Current 129.0.6668.89-1 [extra]
Ticket None
Created Thu Oct 28 21:21:03 2021
Issue Severity Remote Type Description
CVE-2021-38004 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the Autofill component of the Chromium browser engine before version 95.0.4638.69.
CVE-2021-38003 High Yes Arbitrary code execution
An inappropriate implementation security issue has been found in the V8 component of the Chromium browser engine before version 95.0.4638.69. Google is...
CVE-2021-38002 High Yes Arbitrary code execution
A use after free security issue has been found in the Web Transport component of the Chromium browser engine before version 95.0.4638.69.
CVE-2021-38001 High Yes Arbitrary code execution
A type confusion security issue has been found in the V8 component of the Chromium browser engine before version 95.0.4638.69.
CVE-2021-38000 High Yes Insufficient validation
An insufficient validation of untrusted input security issue has been found in the Intents component of the Chromium browser engine before version...
CVE-2021-37999 High Yes Insufficient validation
An insufficient data validation security issue has been found in the New Tab Page component of the Chromium browser engine before version 95.0.4638.69.
CVE-2021-37998 High Yes Arbitrary code execution
A use after free security issue has been found in the Garbage Collection component of the Chromium browser engine before version 95.0.4638.69.
CVE-2021-37997 High Yes Arbitrary code execution
A use after free security issue has been found in the Sign-In component of the Chromium browser engine before version 95.0.4638.69.
Date Advisory Package Type
29 Oct 2021 ASA-202110-7 chromium multiple issues