Title: Chromium, Google Chrome: Multiple vulnerabilities ([glsa=202107-49]GLSA 202107-49[/glsa])
Severity: high
Exploitable: remote
Date: 2021-07-22
Bug(s): #802540
ID: 202107-49
Synopsis
Multiple vulnerabilities have been found in Chromium and Google
Chrome, the worst of which could result in the arbitrary execution of code.
Background
Chromium is an open-source browser project that aims to build a safer,
faster, and more stable way for all users to experience the web.
Google Chrome is one fast, simple, and secure browser for all your
devices.
Affected Packages
Package: www-client/chromium
Vulnerable: < 91.0.4472.164
Unaffected: >= 91.0.4472.164
Architectures: All supported architectures
Package: www-client/google-chrome
Vulnerable: < 91.0.4472.164
Unaffected: >= 91.0.4472.164
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in chromium, and
google-chrome. Please review the CVE identifiers referenced below for
details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All Chromium users should upgrade to the latest version:
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose
">=www-client/chromium-91.0.4472.164"
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose
">=www-client/google-chrome-91.0.4472.164"
References
CVE-2021-30541
CVE-2021-30559
CVE-2021-30560
CVE-2021-30561
CVE-2021-30562
CVE-2021-30563
CVE-2021-30564