Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 727012 (CVE-2020-6493, CVE-2020-6494, CVE-2020-6495, CVE-2020-6496) - <www-client/{chromium,google-chrome}-83.0.4103.97: Multiple vulnerabilities (CVE-2020-{6493,6494,6495,6496})
Summary: <www-client/{chromium,google-chrome}-83.0.4103.97: Multiple vulnerabilities (...
Status: RESOLVED FIXED
Alias: CVE-2020-6493, CVE-2020-6494, CVE-2020-6495, CVE-2020-6496
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal major (vote)
Assignee: Gentoo Security
URL: https://chromereleases.googleblog.com...
Whiteboard: A2 [glsa+ cve]
Keywords: PullRequest
Depends on:
Blocks:
 
Reported: 2020-06-03 20:22 UTC by Stephan Hartmann
Modified: 2020-06-13 16:17 UTC (History)
1 user (show)

See Also:
Package list:
www-client/chromium-83.0.4103.97
Runtime testing required: ---
nattka: sanity-check+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Stephan Hartmann gentoo-dev 2020-06-03 20:22:39 UTC
See ${URL}.
Comment 1 Larry the Git Cow gentoo-dev 2020-06-04 14:47:05 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a537d59b37b14d88b8cb5e4ad1020d0f1645a601

commit a537d59b37b14d88b8cb5e4ad1020d0f1645a601
Author:     Stephan Hartmann <stha09@googlemail.com>
AuthorDate: 2020-06-04 06:32:23 +0000
Commit:     Mike Gilbert <floppym@gentoo.org>
CommitDate: 2020-06-04 14:46:54 +0000

    www-client/chromium: stable channel bump to 83.0.4103.97
    
    Bug: https://bugs.gentoo.org/727012
    Closes: https://bugs.gentoo.org/726604
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Stephan Hartmann <stha09@googlemail.com>
    Signed-off-by: Mike Gilbert <floppym@gentoo.org>
    Closes: https://github.com/gentoo/gentoo/pull/16065

 www-client/chromium/Manifest                       |   1 +
 www-client/chromium/chromium-83.0.4103.97.ebuild   | 820 +++++++++++++++++++++
 .../files/chromium-83-gcc-compatibility.patch      |  25 +
 3 files changed, 846 insertions(+)
Comment 2 Agostino Sarubbo gentoo-dev 2020-06-06 17:27:53 UTC
amd64 stable.

Maintainer(s), please cleanup.
Security, please add it to the existing request, or file a new one.
Comment 3 Larry the Git Cow gentoo-dev 2020-06-07 17:17:13 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e56129d3126b50941f4f742ada1884c344d8dc31

commit e56129d3126b50941f4f742ada1884c344d8dc31
Author:     Stephan Hartmann <stha09@googlemail.com>
AuthorDate: 2020-06-07 16:55:30 +0000
Commit:     Mike Gilbert <floppym@gentoo.org>
CommitDate: 2020-06-07 17:17:06 +0000

    www-client/chromium: security cleanup
    
    Bug: https://bugs.gentoo.org/727012
    Package-Manager: Portage-2.3.99, Repoman-2.3.22
    Signed-off-by: Stephan Hartmann <stha09@googlemail.com>
    Signed-off-by: Mike Gilbert <floppym@gentoo.org>
    Closes: https://github.com/gentoo/gentoo/pull/16109

 www-client/chromium/Manifest                     |   1 -
 www-client/chromium/chromium-83.0.4103.61.ebuild | 819 -----------------------
 2 files changed, 820 deletions(-)
Comment 4 Yury German Gentoo Infrastructure gentoo-dev Security 2020-06-10 04:17:17 UTC
Arches and Maintainer(s), Thank you for your work.
Cleaned up.

Added to an existing GLSA Request.
Comment 5 Sam James archtester gentoo-dev Security 2020-06-13 16:15:27 UTC
https://security.gentoo.org/glsa/202006-02