VulnerableCode Package Details - pkg:alpm/archlinux/chromium@90.0.4430.85-1

Search for packages

Package details: pkg:alpm/archlinux/chromium@90.0.4430.85-1

Essentials
History (41)

purl	pkg:alpm/archlinux/chromium@90.0.4430.85-1

Next non-vulnerable version	91.0.4472.77-1
Latest non-vulnerable version	102.0.5005.61-1
Risk	4.0

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-1fq4-ep8y-aaas Aliases: CVE-2021-21230	Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-b8me-cus9-aaak Aliases: CVE-2021-21231	Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-c2jc-se72-aaaq Aliases: CVE-2021-21232	Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pcq1-9gqe-aaad Aliases: CVE-2021-21229	Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-wx4w-h14k-aaab Aliases: CVE-2021-21227	Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-xa14-cerp-aaas Aliases: CVE-2021-21228	Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-zety-1gzd-aaac Aliases: CVE-2021-21233	Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	90.0.4430.93-1 Affected by 15 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-45hr-84ah-aaaj	Heap buffer overflow in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page.	CVE-2021-21222
VCID-ctdr-x4ht-aaaf	Type confusion in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.	CVE-2021-21224
VCID-f7wb-b11n-aaac	Use after free in navigation in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CVE-2021-21226
VCID-fbtc-dmfn-aaam	Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.	CVE-2021-21223
VCID-mtb3-v6gc-aaam	Out of bounds memory access in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CVE-2021-21225

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:45:40.321559+00:00	Arch Linux Importer	Fixing	VCID-45hr-84ah-aaaj	https://security.archlinux.org/AVG-1843	36.0.0
2025-03-28T07:45:40.301030+00:00	Arch Linux Importer	Fixing	VCID-fbtc-dmfn-aaam	https://security.archlinux.org/AVG-1843	36.0.0
2025-03-28T07:45:40.280281+00:00	Arch Linux Importer	Fixing	VCID-ctdr-x4ht-aaaf	https://security.archlinux.org/AVG-1843	36.0.0
2025-03-28T07:45:40.259682+00:00	Arch Linux Importer	Fixing	VCID-mtb3-v6gc-aaam	https://security.archlinux.org/AVG-1843	36.0.0
2025-03-28T07:45:40.239063+00:00	Arch Linux Importer	Fixing	VCID-f7wb-b11n-aaac	https://security.archlinux.org/AVG-1843	36.0.0
2025-03-28T07:45:37.970825+00:00	Arch Linux Importer	Affected by	VCID-wx4w-h14k-aaab	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.952066+00:00	Arch Linux Importer	Affected by	VCID-xa14-cerp-aaas	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.933451+00:00	Arch Linux Importer	Affected by	VCID-pcq1-9gqe-aaad	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.914671+00:00	Arch Linux Importer	Affected by	VCID-1fq4-ep8y-aaas	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.895533+00:00	Arch Linux Importer	Affected by	VCID-b8me-cus9-aaak	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.876939+00:00	Arch Linux Importer	Affected by	VCID-c2jc-se72-aaaq	https://security.archlinux.org/AVG-1871	36.0.0
2025-03-28T07:45:37.858160+00:00	Arch Linux Importer	Affected by	VCID-zety-1gzd-aaac	https://security.archlinux.org/AVG-1871	36.0.0
2024-09-18T02:00:39.516470+00:00	Arch Linux Importer	Fixing	VCID-45hr-84ah-aaaj	https://security.archlinux.org/AVG-1843	34.0.1
2024-09-18T02:00:39.492031+00:00	Arch Linux Importer	Fixing	VCID-fbtc-dmfn-aaam	https://security.archlinux.org/AVG-1843	34.0.1
2024-09-18T02:00:39.461650+00:00	Arch Linux Importer	Fixing	VCID-ctdr-x4ht-aaaf	https://security.archlinux.org/AVG-1843	34.0.1
2024-09-18T02:00:39.434449+00:00	Arch Linux Importer	Fixing	VCID-mtb3-v6gc-aaam	https://security.archlinux.org/AVG-1843	34.0.1
2024-09-18T02:00:39.407015+00:00	Arch Linux Importer	Fixing	VCID-f7wb-b11n-aaac	https://security.archlinux.org/AVG-1843	34.0.1
2024-09-18T02:00:36.539644+00:00	Arch Linux Importer	Affected by	VCID-wx4w-h14k-aaab	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.519457+00:00	Arch Linux Importer	Affected by	VCID-xa14-cerp-aaas	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.494666+00:00	Arch Linux Importer	Affected by	VCID-pcq1-9gqe-aaad	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.469980+00:00	Arch Linux Importer	Affected by	VCID-1fq4-ep8y-aaas	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.445038+00:00	Arch Linux Importer	Affected by	VCID-b8me-cus9-aaak	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.425538+00:00	Arch Linux Importer	Affected by	VCID-c2jc-se72-aaaq	https://security.archlinux.org/AVG-1871	34.0.1
2024-09-18T02:00:36.404677+00:00	Arch Linux Importer	Affected by	VCID-zety-1gzd-aaac	https://security.archlinux.org/AVG-1871	34.0.1
2024-01-24T00:31:22.345989+00:00	Arch Linux Importer	Fixing	VCID-45hr-84ah-aaaj	https://security.archlinux.org/AVG-1843	34.0.0rc2
2024-01-24T00:31:22.319558+00:00	Arch Linux Importer	Fixing	VCID-fbtc-dmfn-aaam	https://security.archlinux.org/AVG-1843	34.0.0rc2
2024-01-24T00:31:22.296698+00:00	Arch Linux Importer	Fixing	VCID-ctdr-x4ht-aaaf	https://security.archlinux.org/AVG-1843	34.0.0rc2
2024-01-24T00:31:22.272839+00:00	Arch Linux Importer	Fixing	VCID-mtb3-v6gc-aaam	https://security.archlinux.org/AVG-1843	34.0.0rc2
2024-01-24T00:31:22.248824+00:00	Arch Linux Importer	Fixing	VCID-f7wb-b11n-aaac	https://security.archlinux.org/AVG-1843	34.0.0rc2
2024-01-03T22:26:57.632156+00:00	Arch Linux Importer	Fixing	VCID-45hr-84ah-aaaj	https://security.archlinux.org/AVG-1843	34.0.0rc1
2024-01-03T22:26:57.608269+00:00	Arch Linux Importer	Fixing	VCID-fbtc-dmfn-aaam	https://security.archlinux.org/AVG-1843	34.0.0rc1
2024-01-03T22:26:57.587001+00:00	Arch Linux Importer	Fixing	VCID-ctdr-x4ht-aaaf	https://security.archlinux.org/AVG-1843	34.0.0rc1
2024-01-03T22:26:57.565692+00:00	Arch Linux Importer	Fixing	VCID-mtb3-v6gc-aaam	https://security.archlinux.org/AVG-1843	34.0.0rc1
2024-01-03T22:26:57.544430+00:00	Arch Linux Importer	Fixing	VCID-f7wb-b11n-aaac	https://security.archlinux.org/AVG-1843	34.0.0rc1
2024-01-03T22:26:53.641603+00:00	Arch Linux Importer	Affected by	VCID-wx4w-h14k-aaab	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.617844+00:00	Arch Linux Importer	Affected by	VCID-xa14-cerp-aaas	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.593560+00:00	Arch Linux Importer	Affected by	VCID-pcq1-9gqe-aaad	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.571948+00:00	Arch Linux Importer	Affected by	VCID-1fq4-ep8y-aaas	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.550217+00:00	Arch Linux Importer	Affected by	VCID-b8me-cus9-aaak	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.528438+00:00	Arch Linux Importer	Affected by	VCID-c2jc-se72-aaaq	https://security.archlinux.org/AVG-1871	34.0.0rc1
2024-01-03T22:26:53.504821+00:00	Arch Linux Importer	Affected by	VCID-zety-1gzd-aaac	https://security.archlinux.org/AVG-1871	34.0.0rc1