FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

chromium -- multiple vulnerabilities

Affected packages
		chromium	<	89.0.4389.128

Details

VuXML ID	7c0d71a9-9d48-11eb-97a0-e09467587c17
Discovery	2021-04-13
Entry	2021-04-14

Chrome Releases reports:

This release contains two security fixes:

[1196781] High CVE-2021-21206: Use after free in Blink. Reported by Anonymous on 2021-04-07

[1196683] High CVE-2021-21220: Insufficient validation of untrusted input in V8 for x86_64. Reported by Bruno Keith (@bkth_) and Niklas Baumstark (@_niklasb) of Dataflow Security (@dfsec_it) via ZDI (ZDI-CAN-13569) on 2021-04-07>

[source]

References

CVE Name	CVE-2021-21206
CVE Name	CVE-2021-21220
URL	https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop.html