vivaldi

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description An advanced browser made with the power user in mind.
Version 3.8.2259.40-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1858 3.7.2218.55-1 3.7.2218.58-1 High Fixed
AVG-1828 3.7.2218.58-1 3.8.2259.37-1 High Fixed
AVG-1817 3.7.2218.52-1 3.7.2218.55-1 High Fixed
AVG-1752 3.7.2218.49-1 3.7.2218.52-1 High Fixed
AVG-1633 3.6.2165.40-1 3.7.2218.45-1 High Fixed
AVG-1585 3.6.2165.36-1 3.6.2165.40-1 High Fixed
AVG-1478 3.5.2115.87-2 3.6.2165.36-1 Critical Fixed
AVG-1424 3.5.2115.81-1 3.5.2115.87-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2021-21233 AVG-1828 High Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the ANGLE component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21232 AVG-1828 High Yes Arbitrary code execution
A use after free security issue has been found in the Dev Tools component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21231 AVG-1828 Low Yes Incorrect calculation
An insufficient data validation security issue has been found in the V8 component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21230 AVG-1828 Medium Yes Incorrect calculation
A type confusion security issue has been found in the V8 component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21229 AVG-1828 Medium Yes Content spoofing
An incorrect security UI security issue has been found in the downloads component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21228 AVG-1828 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the extensions component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21227 AVG-1828 High Yes Insufficient validation
An insufficient data validation security issue has been found in the V8 component of the Chromium browser before version 90.0.4430.93.
CVE-2021-21226 AVG-1828 High Yes Sandbox escape
Use after free in navigation in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially...
CVE-2021-21225 AVG-1828 High Yes Arbitrary code execution
Out of bounds memory access in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21224 AVG-1858 High Yes Arbitrary code execution
Type confusion in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page....
CVE-2021-21223 AVG-1828 High Yes Sandbox escape
Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially perform a...
CVE-2021-21222 AVG-1828 High Yes Sandbox escape
Heap buffer overflow in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to bypass site...
CVE-2021-21221 AVG-1828 High Yes Information disclosure
Insufficient validation of untrusted input in Mojo in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process...
CVE-2021-21220 AVG-1817 High Yes Insufficient validation
Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit a heap corruption...
CVE-2021-21219 AVG-1828 Low Yes Information disclosure
Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process...
CVE-2021-21218 AVG-1828 Low Yes Information disclosure
Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process...
CVE-2021-21217 AVG-1828 Low Yes Information disclosure
Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process...
CVE-2021-21216 AVG-1828 Medium Yes Content spoofing
Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to spoof security UI via a crafted HTML page.
CVE-2021-21215 AVG-1828 Medium Yes Content spoofing
Inappropriate implementation in Autofill in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to spoof security UI via a crafted HTML page.
CVE-2021-21214 AVG-1828 Medium Yes Arbitrary code execution
Use after free in Network API in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension.
CVE-2021-21213 AVG-1828 Medium Yes Arbitrary code execution
Use after free in WebMIDI in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21210 AVG-1828 Medium Yes Information disclosure
Inappropriate implementation in Network in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially access local UDP ports via a crafted...
CVE-2021-21209 AVG-1828 Medium Yes Information disclosure
Inappropriate implementation in storage in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
CVE-2021-21207 AVG-1828 Medium Yes Sandbox escape
Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially...
CVE-2021-21206 AVG-1817 High Yes Arbitrary code execution
A use after free security issue in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit a heap corruption via a...
CVE-2021-21203 AVG-1828 High Yes Arbitrary code execution
Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21202 AVG-1828 High Yes Sandbox escape
Use after free in extensions in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially...
CVE-2021-21201 AVG-1828 High Yes Sandbox escape
Use after free in permissions in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to potentially...
CVE-2021-21199 AVG-1752 High Yes Arbitrary code execution
Use after free in Aura in Google Chrome on Linux prior to 89.0.4389.114 allowed a remote attacker who had compromised the renderer process to potentially...
CVE-2021-21198 AVG-1752 High Yes Sandbox escape
An out of bounds read in IPC in Google Chrome prior to 89.0.4389.114 allowed a remote attacker who had compromised the renderer process to potentially...
CVE-2021-21197 AVG-1752 High Yes Arbitrary code execution
A heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21195 AVG-1752 High Yes Arbitrary code execution
Use after free in V8 in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21194 AVG-1752 High Yes Arbitrary code execution
Use after free in screen sharing in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21193 AVG-1633 High Yes Arbitrary code execution
A use after free security issue was found in the Blink component of the Chromium browser before version 89.0.4389.90. Google is aware of reports that an...
CVE-2021-21192 AVG-1633 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the tab groups component of the Chromium browser before version 89.0.4389.90.
CVE-2021-21191 AVG-1633 High Yes Arbitrary code execution
A use after free security issue was found in the WebRTC component of the Chromium browser before version 89.0.4389.90.
CVE-2021-21190 AVG-1633 Low Yes Arbitrary code execution
An uninitialized use security issue was found in the PDFium component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21189 AVG-1633 Low Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the payments component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21188 AVG-1633 Low Yes Arbitrary code execution
A use after free security issue was found in the Blink component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21187 AVG-1633 Low Yes Insufficient validation
An insufficient data validation security issue was found in the URL formatting component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21186 AVG-1633 Low Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the QR scanning component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21185 AVG-1633 Low Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the extensions component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21184 AVG-1633 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the performance APIs component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21183 AVG-1633 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the performance APIs component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21182 AVG-1633 Low Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the navigations component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21181 AVG-1633 Medium Yes Information disclosure
A side-channel information leakage security issue was found in the autofill component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21180 AVG-1633 Medium Yes Arbitrary code execution
A use after free security issue was found in the tab search component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21179 AVG-1633 Medium Yes Arbitrary code execution
A use after free security issue was found in the Network Internals component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21178 AVG-1633 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Compositing component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21177 AVG-1633 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the Autofill component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21176 AVG-1633 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the full screen mode component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21175 AVG-1633 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Site isolation component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21174 AVG-1633 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Referrer component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21173 AVG-1633 Medium Yes Information disclosure
A side-channel information leakage security issue was found in the Network Internals component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21172 AVG-1633 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21171 AVG-1633 Medium Yes Content spoofing
An incorrect security UI security issue was found in the TabStrip and Navigation components of the Chromium browser before version 89.0.4389.72.
CVE-2021-21170 AVG-1633 Medium Yes Content spoofing
An incorrect security UI security issue was found in the Loader component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21169 AVG-1633 Medium Yes Information disclosure
An out of bounds memory access security issue was found in the V8 component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21168 AVG-1633 Medium Yes Access restriction bypass
An insufficient policy enforcement security issue was found in the appcache component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21167 AVG-1633 Medium Yes Arbitrary code execution
A use after free security issue was found in the bookmarks component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21166 AVG-1633 High Yes Arbitrary code execution
An object lifecycle security issue was found in the audio component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21165 AVG-1633 High Yes Arbitrary code execution
An object lifecycle security issue was found in the audio component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21163 AVG-1633 High Yes Insufficient validation
An insufficient data validation security issue was found in the Reader Mode component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21162 AVG-1633 High Yes Arbitrary code execution
A use after free security issue was found in the WebRTC component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21161 AVG-1633 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the TabStrip component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21160 AVG-1633 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the WebAudio component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21159 AVG-1633 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the TabStrip component of the Chromium browser before version 89.0.4389.72.
CVE-2021-21157 AVG-1585 Medium Yes Arbitrary code execution
A use after free security issue was found in the Web Sockets component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21156 AVG-1585 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the V8 component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21155 AVG-1585 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Tab Strip component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21154 AVG-1585 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Tab Strip component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21153 AVG-1585 High Yes Arbitrary code execution
A stack overflow security issue was found in the GPU Process component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21152 AVG-1585 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Media component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21151 AVG-1585 High Yes Arbitrary code execution
A use after free security issue was found in the Payments component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21150 AVG-1585 High Yes Arbitrary code execution
A use after free security issue was found in the Downloads component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21149 AVG-1585 High Yes Arbitrary code execution
A stack overflow security issue was found in the Data Transfer component of the Chromium browser before version 88.0.4324.182.
CVE-2021-21148 AVG-1478 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the V8 component of the Chromium browser before version 88.0.4324.150.
CVE-2021-21147 AVG-1478 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Skia component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21146 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the Navigation component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21145 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the Fonts component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21144 AVG-1478 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Tab Groups component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21143 AVG-1478 High Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Extensions component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21142 AVG-1478 Critical Yes Arbitrary code execution
A use after free security issue was found in the Payments component of the Chromium browser before version 88.0.4324.146.
CVE-2021-21141 AVG-1478 Low Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21140 AVG-1478 Low Yes Arbitrary code execution
An uninitialized use security issue was found in the USB component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21139 AVG-1478 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the iframe sandbox component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21138 AVG-1478 Low Yes Arbitrary code execution
A use after free security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21137 AVG-1478 Low Yes Incorrect calculation
An inappropriate implementation security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21136 AVG-1478 Low Yes Insufficient validation
An insufficient policy enforcement security issue was found in the WebView component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21135 AVG-1478 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the Performance API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21134 AVG-1478 Medium Yes Content spoofing
An incorrect security UI security issue was found in the Page Info component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21133 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the Downloads component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21132 AVG-1478 Medium Yes Incorrect calculation
An inappropriate implementation security issue was found in the DevTools component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21131 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21130 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21129 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21128 AVG-1478 Medium Yes Arbitrary code execution
A heap buffer overflow security issue was found in the Blink component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21127 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the extensions component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21126 AVG-1478 Medium Yes Insufficient validation
An insufficient policy enforcement security issue was found in the extensions component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21125 AVG-1478 High Yes Insufficient validation
An insufficient policy enforcement security issue was found in the File System API component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21124 AVG-1478 High Yes Arbitrary code execution
A potential use after free security issue was found in the Speech Recognizer component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21123 AVG-1478 High Yes Insufficient validation
An insufficient data validation security issue was found in the File System component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21122 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the Blink component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21121 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the Omnibox component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21120 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the WebSQL component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21119 AVG-1478 High Yes Arbitrary code execution
A use after free security issue was found in the Media component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21118 AVG-1478 High Yes Insufficient validation
An insufficient data validation security issue was found in the V8 component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21117 AVG-1478 Critical Yes Insufficient validation
An insufficient policy enforcement security issue was found in the Cryptohome component of the Chromium browser before version 88.0.4324.96.
CVE-2021-21116 AVG-1424 Medium Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the audio component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21115 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the safe browsing component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21114 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the audio component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21113 AVG-1424 High Yes Arbitrary code execution
A heap buffer overflow security issue has been found in the Skia component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21112 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the Blink component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21111 AVG-1424 High Yes Access restriction bypass
An insufficient policy enforcement security issue has been found in the WebUI component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21110 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the safe browsing component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21109 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the payments component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21108 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the media component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21107 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the drag and drop component of the Chromium browser before version 87.0.4280.141.
CVE-2021-21106 AVG-1424 High Yes Arbitrary code execution
A use after free security issue has been found in the autofill component of the Chromium browser before version 87.0.4280.141.
CVE-2020-27844 AVG-1633 Medium No Arbitrary code execution
A heap-based buffer overflow was discovered in lib/openjp2/t2.c:973 in the current master (commit 18b1138fbe3bb0ae4aa2bf1369f9430a8ec6fa00) of OpenJPEG.
CVE-2020-16044 AVG-1478 Critical Yes Arbitrary code execution
A security issue was found in Firefox before 84.0.2, Thunderbird before 78.6.1 and Chromium before 88.0.4324.96. A malicious peer could have modified a...
CVE-2020-16043 AVG-1424 High Yes Insufficient validation
An insufficient data validation security issue has been found in the networking component of the Chromium browser before version 87.0.4280.141.
CVE-2020-15995 AVG-1424 High Yes Arbitrary code execution
An out of bounds write security issue has been found in the V8 component of the Chromium browser before version 87.0.4280.141.

Advisories

Date Advisory Group Severity Type
29 Apr 2021 ASA-202104-2 AVG-1828 High multiple issues
25 Mar 2021 ASA-202103-19 AVG-1633 High multiple issues
06 Feb 2021 ASA-202102-4 AVG-1478 Critical multiple issues
12 Jan 2021 ASA-202101-20 AVG-1424 High multiple issues