{"affected":[{"ecosystem_specific":{"binaries":[{"chromedriver":"81.0.4044.92-lp151.2.77.1","chromium":"81.0.4044.92-lp151.2.77.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"chromium","purl":"pkg:rpm/opensuse/chromium&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"81.0.4044.92-lp151.2.77.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for chromium fixes the following issues:\n\nChromium was updated to 81.0.4044.92 boo#1168911:\n\n  * CVE-2020-6454: Use after free in extensions\n  * CVE-2020-6423: Use after free in audio\n  * CVE-2020-6455: Out of bounds read in WebSQL\n  * CVE-2020-6430: Type Confusion in V8\n  * CVE-2020-6456: Insufficient validation of untrusted input in clipboard\n  * CVE-2020-6431: Insufficient policy enforcement in full screen\n  * CVE-2020-6432: Insufficient policy enforcement in navigations\n  * CVE-2020-6433: Insufficient policy enforcement in extensions\n  * CVE-2020-6434: Use after free in devtools\n  * CVE-2020-6435: Insufficient policy enforcement in extensions\n  * CVE-2020-6436: Use after free in window management\n  * CVE-2020-6437: Inappropriate implementation in WebView\n  * CVE-2020-6438: Insufficient policy enforcement in extensions\n  * CVE-2020-6439: Insufficient policy enforcement in navigations\n  * CVE-2020-6440: Inappropriate implementation in extensions\n  * CVE-2020-6441: Insufficient policy enforcement in omnibox\n  * CVE-2020-6442: Inappropriate implementation in cache\n  * CVE-2020-6443: Insufficient data validation in developer tools\n  * CVE-2020-6444: Uninitialized Use in WebRTC\n  * CVE-2020-6445: Insufficient policy enforcement in trusted types\n  * CVE-2020-6446: Insufficient policy enforcement in trusted types\n  * CVE-2020-6447: Inappropriate implementation in developer tools\n  * CVE-2020-6448: Use after free in V8\n\nChromium was updated to 80.0.3987.162 boo#1168421:\n\n  * CVE-2020-6450: Use after free in WebAudio.\n  * CVE-2020-6451: Use after free in WebAudio.\n  * CVE-2020-6452: Heap buffer overflow in media.\n\n- Use a symbolic icon for GNOME\n\n","id":"openSUSE-SU-2020:0519-1","modified":"2020-04-15T04:09:21Z","published":"2020-04-15T04:09:21Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DAKCPEJQA3VJJ2VNICHLV5YRCLKMZYQ6/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1167465"},{"type":"REPORT","url":"https://bugzilla.suse.com/1168421"},{"type":"REPORT","url":"https://bugzilla.suse.com/1168911"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6423"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6430"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6431"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6432"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6433"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6434"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6435"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6436"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6437"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6438"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6439"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6440"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6441"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6442"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6443"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6444"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6445"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6446"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6447"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6448"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6450"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6451"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6452"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6454"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6455"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-6456"}],"related":["CVE-2020-6423","CVE-2020-6430","CVE-2020-6431","CVE-2020-6432","CVE-2020-6433","CVE-2020-6434","CVE-2020-6435","CVE-2020-6436","CVE-2020-6437","CVE-2020-6438","CVE-2020-6439","CVE-2020-6440","CVE-2020-6441","CVE-2020-6442","CVE-2020-6443","CVE-2020-6444","CVE-2020-6445","CVE-2020-6446","CVE-2020-6447","CVE-2020-6448","CVE-2020-6450","CVE-2020-6451","CVE-2020-6452","CVE-2020-6454","CVE-2020-6455","CVE-2020-6456"],"summary":"Security update for chromium","upstream":["CVE-2020-6423","CVE-2020-6430","CVE-2020-6431","CVE-2020-6432","CVE-2020-6433","CVE-2020-6434","CVE-2020-6435","CVE-2020-6436","CVE-2020-6437","CVE-2020-6438","CVE-2020-6439","CVE-2020-6440","CVE-2020-6441","CVE-2020-6442","CVE-2020-6443","CVE-2020-6444","CVE-2020-6445","CVE-2020-6446","CVE-2020-6447","CVE-2020-6448","CVE-2020-6450","CVE-2020-6451","CVE-2020-6452","CVE-2020-6454","CVE-2020-6455","CVE-2020-6456"]}