VuXML: chromium -- multiple vulnerabilities

VuXML ID	7d3d94d3-2810-11ec-9c51-3065ec8fd3ec
Discovery	2021-10-07
Entry	2021-10-08

Chrome Releases reports:

This release contains 4 security fixes, including:

[1252878] High CVE-2021-37977: Use after free in Garbage Collection. Reported by Anonymous on 2021-09-24

[1236318] High CVE-2021-37978: Heap buffer overflow in Blink. Reported by Yangkang (@dnpushme) of 360 ATA on 2021-08-04

[1247260] High CVE-2021-37979: Heap buffer overflow in WebRTC. Reported by Marcin Towalski of Cisco Talos on 2021-09-07

[1254631] High CVE-2021-37980: Inappropriate implementation in Sandbox. Reported by Yonghwi Jin (@jinmo123) on 2021-09-30

[source]

CVE Name	CVE-2021-37977
CVE Name	CVE-2021-37978
CVE Name	CVE-2021-37979
CVE Name	CVE-2021-37980
URL	https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop.html

chromium -- multiple vulnerabilities

Details

References