CVE-2021-38019 log

Source
Severity Medium
Remote Yes
Type Same-origin policy bypass
Description
An insufficient policy enforcement security issue has been found in the CORS component of the Chromium browser engine before version 96.0.4664.45.
Group Package Affected Fixed Severity Status Ticket
AVG-2563 opera 81.0.4196.54-1 82.0.4227.23-1 High Fixed
AVG-2560 chromium 95.0.4638.69-2 96.0.4664.45-1 High Fixed
AVG-2475 vivaldi 4.3.2439.65-1 5.0.2497.24-1 High Fixed
Date Advisory Group Package Severity Type
03 Dec 2021 ASA-202112-2 AVG-2563 opera High multiple issues
03 Dec 2021 ASA-202112-1 AVG-2475 vivaldi High multiple issues
18 Nov 2021 ASA-202111-9 AVG-2560 chromium High multiple issues
References
https://chromereleases.googleblog.com/2021/11/stable-channel-update-for-desktop.html
https://crbug.com/1251179