Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 813035 (CVE-2021-30625, CVE-2021-30626, CVE-2021-30627, CVE-2021-30628, CVE-2021-30629, CVE-2021-30630, CVE-2021-30631, CVE-2021-30632, CVE-2021-30633)

Summary: <www-client/chromium-93.0.4577.82 <www-client/google-chrome-93.0.4577.82: Multiple vulnerabilities (CVE-2021-{30625,30626,30627,30628,30629,30630,30631,30632,30633})
Product: Gentoo Security Reporter: Stephan Hartmann <sultan>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: chromium
Priority: Normal Keywords: PullRequest
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop.html
See Also: https://github.com/gentoo/gentoo/pull/22293
Whiteboard: A2 [glsa+]
Package list:
Runtime testing required: ---
Bug Depends on: 813064    
Bug Blocks:    

Description Stephan Hartmann gentoo-dev 2021-09-14 08:13:40 UTC
See ${URL}.
Comment 1 Larry the Git Cow gentoo-dev 2021-09-14 08:18:26 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=73540304567c10393c7dd3d46d8e5bb4955969d2

commit 73540304567c10393c7dd3d46d8e5bb4955969d2
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2021-09-14 08:16:40 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2021-09-14 08:18:03 +0000

    www-client/google-chrome: automated update (93.0.4577.82)
    
    Bug: https://bugs.gentoo.org/813035
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/google-chrome/Manifest                                       | 2 +-
 ...gle-chrome-93.0.4577.63.ebuild => google-chrome-93.0.4577.82.ebuild} | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
Comment 2 Larry the Git Cow gentoo-dev 2021-09-14 11:27:23 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d6035f09c961fb1eec9c6bb6e3a4eada55865486

commit d6035f09c961fb1eec9c6bb6e3a4eada55865486
Author:     Marek BehĂșn <kabel@kernel.org>
AuthorDate: 2021-09-14 09:27:51 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2021-09-14 10:58:24 +0000

    www-client/chromium: stable channel bump to 93.0.4577.82
    
    Bug: https://bugs.gentoo.org/813035
    Signed-off-by: Marek BehĂșn <kabel@kernel.org>
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                       |   1 +
 www-client/chromium/chromium-93.0.4577.82.ebuild   | 945 +++++++++++++++++++++
 .../chromium-93-fix-build-with-system-ffmpeg.patch |  85 ++
 3 files changed, 1031 insertions(+)
Comment 3 Larry the Git Cow gentoo-dev 2021-09-16 06:04:39 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a12b5f2ca11f153dd5951c7a2aacf9bffcb831e2

commit a12b5f2ca11f153dd5951c7a2aacf9bffcb831e2
Author:     Stephan Hartmann <sultan@gentoo.org>
AuthorDate: 2021-09-16 06:03:32 +0000
Commit:     Stephan Hartmann <sultan@gentoo.org>
CommitDate: 2021-09-16 06:04:10 +0000

    www-client/chromium: security cleanup
    
    Bug: https://bugs.gentoo.org/813035
    Package-Manager: Portage-3.0.20, Repoman-3.0.3
    Signed-off-by: Stephan Hartmann <sultan@gentoo.org>

 www-client/chromium/Manifest                     |   1 -
 www-client/chromium/chromium-93.0.4577.63.ebuild | 947 -----------------------
 2 files changed, 948 deletions(-)
Comment 4 Larry the Git Cow gentoo-dev 2022-01-31 05:31:35 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=a5cb3b8ed2294fbfe4dfaf3e992220585c749f25

commit a5cb3b8ed2294fbfe4dfaf3e992220585c749f25
Author:     John Helmert III <ajak@gentoo.org>
AuthorDate: 2022-01-31 05:00:26 +0000
Commit:     John Helmert III <ajak@gentoo.org>
CommitDate: 2022-01-31 05:00:26 +0000

    [ GLSA 202201-02 ] Chromium, Google Chrome: Multiple vulnerabilities
    
    Bug: https://bugs.gentoo.org/803167
    Bug: https://bugs.gentoo.org/806223
    Bug: https://bugs.gentoo.org/808715
    Bug: https://bugs.gentoo.org/811348
    Bug: https://bugs.gentoo.org/813035
    Bug: https://bugs.gentoo.org/814221
    Bug: https://bugs.gentoo.org/814617
    Bug: https://bugs.gentoo.org/815673
    Bug: https://bugs.gentoo.org/816984
    Bug: https://bugs.gentoo.org/819054
    Bug: https://bugs.gentoo.org/820689
    Bug: https://bugs.gentoo.org/824274
    Bug: https://bugs.gentoo.org/829190
    Bug: https://bugs.gentoo.org/830642
    Bug: https://bugs.gentoo.org/831624
    Signed-off-by: John Helmert III <ajak@gentoo.org>

 glsa-202201-02.xml | 257 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 257 insertions(+)
Comment 5 John Helmert III archtester Gentoo Infrastructure gentoo-dev Security 2022-01-31 05:34:56 UTC
All done! \o/