Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 811348 (CVE-2021-30606, CVE-2021-30607, CVE-2021-30608, CVE-2021-30609, CVE-2021-30610, CVE-2021-30611, CVE-2021-30612, CVE-2021-30613, CVE-2021-30614, CVE-2021-30615, CVE-2021-30616, CVE-2021-30617, CVE-2021-30618, CVE-2021-30619, CVE-2021-30620, CVE-2021-30621, CVE-2021-30622, CVE-2021-30623, CVE-2021-30624)

Summary: <www-client/chromium-93.0.4577.63 <www-client/google-chrome-93.0.4577.63: Multiple vulnerabilities (CVE-2021-{30606,30607,30608,30609,30610,306011,30612,30613,30614,30615,30616,30617,30618,30619,30620,30621,30622,30623,30624})
Product: Gentoo Security Reporter: Stephan Hartmann <sultan>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: chromium
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop_31.html
Whiteboard: A2 [glsa+]
Package list:
Runtime testing required: ---
Bug Depends on: 811357    
Bug Blocks:    

Description Stephan Hartmann gentoo-dev 2021-09-01 20:38:10 UTC
See ${URL}.

www-client/google-chrome bumped already.
Comment 1 Larry the Git Cow gentoo-dev 2021-09-01 20:43:23 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d44b0f2c7b4500c795630ddecde29e42f9aaf9f4

commit d44b0f2c7b4500c795630ddecde29e42f9aaf9f4
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2021-09-01 20:42:21 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2021-09-01 20:43:08 +0000

    www-client/chromium: stable channel bump to 93.0.4577.63
    
    Bug: https://bugs.gentoo.org/811348
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                                            | 2 +-
 .../{chromium-93.0.4577.58.ebuild => chromium-93.0.4577.63.ebuild}      | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
Comment 2 Larry the Git Cow gentoo-dev 2021-09-08 20:00:25 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=602fbae37ad841fc5f6467cde41b9efdbe506174

commit 602fbae37ad841fc5f6467cde41b9efdbe506174
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2021-09-08 20:00:12 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2021-09-08 20:00:12 +0000

    www-client/chromium: security cleanup
    
    Bug: https://bugs.gentoo.org/811348
    Closes: https://bugs.gentoo.org/698974
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                       |   4 -
 www-client/chromium/chromium-92.0.4515.159.ebuild  | 958 ---------------------
 .../files/chromium-92-EnumTable-crash.patch        |  71 --
 .../files/chromium-92-crashpad-consent.patch       |  46 -
 .../chromium/files/chromium-freetype-2.11.patch    |  50 --
 5 files changed, 1129 deletions(-)
Comment 3 Larry the Git Cow gentoo-dev 2022-01-31 05:31:40 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=a5cb3b8ed2294fbfe4dfaf3e992220585c749f25

commit a5cb3b8ed2294fbfe4dfaf3e992220585c749f25
Author:     John Helmert III <ajak@gentoo.org>
AuthorDate: 2022-01-31 05:00:26 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-01-31 05:00:26 +0000

    [ GLSA 202201-02 ] Chromium, Google Chrome: Multiple vulnerabilities
    
    Bug: https://bugs.gentoo.org/803167
    Bug: https://bugs.gentoo.org/806223
    Bug: https://bugs.gentoo.org/808715
    Bug: https://bugs.gentoo.org/811348
    Bug: https://bugs.gentoo.org/813035
    Bug: https://bugs.gentoo.org/814221
    Bug: https://bugs.gentoo.org/814617
    Bug: https://bugs.gentoo.org/815673
    Bug: https://bugs.gentoo.org/816984
    Bug: https://bugs.gentoo.org/819054
    Bug: https://bugs.gentoo.org/820689
    Bug: https://bugs.gentoo.org/824274
    Bug: https://bugs.gentoo.org/829190
    Bug: https://bugs.gentoo.org/830642
    Bug: https://bugs.gentoo.org/831624
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 glsa-202201-02.xml | 257 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 257 insertions(+)
Comment 4 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-01-31 05:35:01 UTC
All done! \o/