VuXML: chromium -- multiple vulnerabilities

VuXML ID	1ba21ff1-e672-11eb-a686-3065ec8fd3ec
Discovery	2021-07-15
Entry	2021-07-16

Chrome Releases reports:

This release contains 8 security fixes, including:

[1219082] High CVE-2021-30559: Out of bounds write in ANGLE. Reported by Seong-Hwan Park (SeHwa) of SecunologyLab on 2021-06-11

[1214842] High CVE-2021-30541: Use after free in V8. Reported by Richard Wheeldon on 2021-05-31

[1219209] High CVE-2021-30560: Use after free in Blink XSLT. Reported by Nick Wellnhofer on 2021-06-12

[1219630] High CVE-2021-30561: Type Confusion in V8. Reported by Sergei Glazunov of Google Project Zero on 2021-06-14

[1220078] High CVE-2021-30562: Use after free in WebSerial. Reported by Anonymous on 2021-06-15

[1228407] High CVE-2021-30563: Type Confusion in V8. Reported by Anonymous on 2021-07-12

[1221309] Medium CVE-2021-30564: Heap buffer overflow in WebXR. Reported by Ali Merchant, iQ3Connect VR Platform on 2021-06-17

Google is aware of reports that an exploit for CVE-2021-30563 exists in the wild.

[source]

CVE Name	CVE-2021-30541
CVE Name	CVE-2021-30559
CVE Name	CVE-2021-30560
CVE Name	CVE-2021-30561
CVE Name	CVE-2021-30562
CVE Name	CVE-2021-30563
CVE Name	CVE-2021-30564
URL	https://chromereleases.googleblog.com/2021/07/stable-channel-update-for-desktop.html

chromium -- multiple vulnerabilities

Details

References