VulnerableCode Package Details - pkg:alpm/archlinux/chromium@85.0.4183.102-1

Search for packages

Package details: pkg:alpm/archlinux/chromium@85.0.4183.102-1

Essentials
History (48)

purl	pkg:alpm/archlinux/chromium@85.0.4183.102-1

Next non-vulnerable version	86.0.4240.75-1
Latest non-vulnerable version	102.0.5005.61-1
Risk	4.3

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-1hvv-x4ts-aaae Aliases: CVE-2020-15962	Insufficient policy validation in serial in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-27us-z5vd-aaaf Aliases: CVE-2020-15961	Insufficient policy validation in extensions in Google Chrome prior to 85.0.4183.121 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5941-f939-aaaj Aliases: CVE-2020-15965	Type confusion in V8 in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-a948-zcru-aaab Aliases: CVE-2020-15966	Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.4183.121 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information via a crafted Chrome Extension.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cdhn-44z4-aaaj Aliases: CVE-2020-15964	Insufficient data validation in media in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-k3u7-w1z3-aaas Aliases: CVE-2020-15963	Insufficient policy enforcement in extensions in Google Chrome prior to 85.0.4183.121 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-vpgw-n6us-aaas Aliases: CVE-2020-15960	Heap buffer overflow in storage in Google Chrome prior to 85.0.4183.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.	85.0.4183.121-1 Affected by 27 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-fmqn-4spq-aaad	Use after free in offscreen canvas in Google Chrome prior to 85.0.4183.102 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CVE-2020-6576
VCID-rs63-ukq2-aaaa	Race in Mojo in Google Chrome prior to 85.0.4183.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CVE-2020-6575
VCID-sgtb-8txp-aaaa	Use after free in video in Google Chrome on Android prior to 85.0.4183.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CVE-2020-6573
VCID-wjxc-cnx6-aaah	Insufficient policy enforcement in installer in Google Chrome on OS X prior to 85.0.4183.102 allowed a local attacker to potentially achieve privilege escalation via a crafted binary.	CVE-2020-6574
VCID-x96b-czp3-aaaf	Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to inject arbitrary web script or HTML via the cloudloader_mode parameter.	CVE-2020-6579

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:45:49.166067+00:00	Arch Linux Importer	Fixing	VCID-sgtb-8txp-aaaa	https://security.archlinux.org/AVG-1225	36.0.0
2025-03-28T07:45:49.145620+00:00	Arch Linux Importer	Fixing	VCID-wjxc-cnx6-aaah	https://security.archlinux.org/AVG-1225	36.0.0
2025-03-28T07:45:49.124988+00:00	Arch Linux Importer	Fixing	VCID-rs63-ukq2-aaaa	https://security.archlinux.org/AVG-1225	36.0.0
2025-03-28T07:45:49.104242+00:00	Arch Linux Importer	Fixing	VCID-fmqn-4spq-aaad	https://security.archlinux.org/AVG-1225	36.0.0
2025-03-28T07:45:49.083436+00:00	Arch Linux Importer	Fixing	VCID-x96b-czp3-aaaf	https://security.archlinux.org/AVG-1225	36.0.0
2025-03-28T07:45:49.035184+00:00	Arch Linux Importer	Affected by	VCID-vpgw-n6us-aaas	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:49.014348+00:00	Arch Linux Importer	Affected by	VCID-27us-z5vd-aaaf	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:48.993877+00:00	Arch Linux Importer	Affected by	VCID-1hvv-x4ts-aaae	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:48.973215+00:00	Arch Linux Importer	Affected by	VCID-k3u7-w1z3-aaas	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:48.952563+00:00	Arch Linux Importer	Affected by	VCID-cdhn-44z4-aaaj	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:48.931824+00:00	Arch Linux Importer	Affected by	VCID-5941-f939-aaaj	https://security.archlinux.org/AVG-1234	36.0.0
2025-03-28T07:45:48.911189+00:00	Arch Linux Importer	Affected by	VCID-a948-zcru-aaab	https://security.archlinux.org/AVG-1234	36.0.0
2024-09-18T02:00:51.062189+00:00	Arch Linux Importer	Fixing	VCID-sgtb-8txp-aaaa	https://security.archlinux.org/AVG-1225	34.0.1
2024-09-18T02:00:51.037801+00:00	Arch Linux Importer	Fixing	VCID-wjxc-cnx6-aaah	https://security.archlinux.org/AVG-1225	34.0.1
2024-09-18T02:00:51.012553+00:00	Arch Linux Importer	Fixing	VCID-rs63-ukq2-aaaa	https://security.archlinux.org/AVG-1225	34.0.1
2024-09-18T02:00:50.987950+00:00	Arch Linux Importer	Fixing	VCID-fmqn-4spq-aaad	https://security.archlinux.org/AVG-1225	34.0.1
2024-09-18T02:00:50.960803+00:00	Arch Linux Importer	Fixing	VCID-x96b-czp3-aaaf	https://security.archlinux.org/AVG-1225	34.0.1
2024-09-18T02:00:50.899142+00:00	Arch Linux Importer	Affected by	VCID-vpgw-n6us-aaas	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.872032+00:00	Arch Linux Importer	Affected by	VCID-27us-z5vd-aaaf	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.844747+00:00	Arch Linux Importer	Affected by	VCID-1hvv-x4ts-aaae	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.816705+00:00	Arch Linux Importer	Affected by	VCID-k3u7-w1z3-aaas	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.788609+00:00	Arch Linux Importer	Affected by	VCID-cdhn-44z4-aaaj	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.760586+00:00	Arch Linux Importer	Affected by	VCID-5941-f939-aaaj	https://security.archlinux.org/AVG-1234	34.0.1
2024-09-18T02:00:50.733532+00:00	Arch Linux Importer	Affected by	VCID-a948-zcru-aaab	https://security.archlinux.org/AVG-1234	34.0.1
2024-01-24T00:31:23.682862+00:00	Arch Linux Importer	Fixing	VCID-sgtb-8txp-aaaa	https://security.archlinux.org/AVG-1225	34.0.0rc2
2024-01-24T00:31:23.658695+00:00	Arch Linux Importer	Fixing	VCID-wjxc-cnx6-aaah	https://security.archlinux.org/AVG-1225	34.0.0rc2
2024-01-24T00:31:23.636497+00:00	Arch Linux Importer	Fixing	VCID-rs63-ukq2-aaaa	https://security.archlinux.org/AVG-1225	34.0.0rc2
2024-01-24T00:31:23.611400+00:00	Arch Linux Importer	Fixing	VCID-fmqn-4spq-aaad	https://security.archlinux.org/AVG-1225	34.0.0rc2
2024-01-24T00:31:23.589621+00:00	Arch Linux Importer	Fixing	VCID-x96b-czp3-aaaf	https://security.archlinux.org/AVG-1225	34.0.0rc2
2024-01-24T00:31:23.562480+00:00	Arch Linux Importer	Affected by	VCID-vpgw-n6us-aaas	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.539083+00:00	Arch Linux Importer	Affected by	VCID-27us-z5vd-aaaf	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.515497+00:00	Arch Linux Importer	Affected by	VCID-1hvv-x4ts-aaae	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.492530+00:00	Arch Linux Importer	Affected by	VCID-k3u7-w1z3-aaas	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.468841+00:00	Arch Linux Importer	Affected by	VCID-cdhn-44z4-aaaj	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.444643+00:00	Arch Linux Importer	Affected by	VCID-5941-f939-aaaj	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-24T00:31:23.423654+00:00	Arch Linux Importer	Affected by	VCID-a948-zcru-aaab	https://security.archlinux.org/AVG-1234	34.0.0rc2
2024-01-03T22:27:08.539205+00:00	Arch Linux Importer	Fixing	VCID-sgtb-8txp-aaaa	https://security.archlinux.org/AVG-1225	34.0.0rc1
2024-01-03T22:27:08.517716+00:00	Arch Linux Importer	Fixing	VCID-wjxc-cnx6-aaah	https://security.archlinux.org/AVG-1225	34.0.0rc1
2024-01-03T22:27:08.496306+00:00	Arch Linux Importer	Fixing	VCID-rs63-ukq2-aaaa	https://security.archlinux.org/AVG-1225	34.0.0rc1
2024-01-03T22:27:08.474877+00:00	Arch Linux Importer	Fixing	VCID-fmqn-4spq-aaad	https://security.archlinux.org/AVG-1225	34.0.0rc1
2024-01-03T22:27:08.453501+00:00	Arch Linux Importer	Fixing	VCID-x96b-czp3-aaaf	https://security.archlinux.org/AVG-1225	34.0.0rc1
2024-01-03T22:27:08.398427+00:00	Arch Linux Importer	Affected by	VCID-vpgw-n6us-aaas	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.372201+00:00	Arch Linux Importer	Affected by	VCID-27us-z5vd-aaaf	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.345913+00:00	Arch Linux Importer	Affected by	VCID-1hvv-x4ts-aaae	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.321567+00:00	Arch Linux Importer	Affected by	VCID-k3u7-w1z3-aaas	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.291901+00:00	Arch Linux Importer	Affected by	VCID-cdhn-44z4-aaaj	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.270188+00:00	Arch Linux Importer	Affected by	VCID-5941-f939-aaaj	https://security.archlinux.org/AVG-1234	34.0.0rc1
2024-01-03T22:27:08.248725+00:00	Arch Linux Importer	Affected by	VCID-a948-zcru-aaab	https://security.archlinux.org/AVG-1234	34.0.0rc1