Upstream information

CVE-2021-21154 at MITRE

Description

Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.

SUSE information

Overall state of this security issue: Does not affect SUSE products

SUSE Bugzilla entry: 1182358 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Package Hub 15 SP2
  • chromedriver >= 89.0.4389.72-bp152.2.62.1
  • chromium >= 89.0.4389.72-bp152.2.62.1
Patchnames:
openSUSE-2021-401
openSUSE Leap 15.2
  • chromedriver >= 89.0.4389.72-lp152.2.77.1
  • chromium >= 89.0.4389.72-lp152.2.77.1
Patchnames:
openSUSE-2021-392
openSUSE Leap 15.2 NonFree
  • opera >= 74.0.3911.203-lp152.2.37.1
Patchnames:
openSUSE-2021-413
openSUSE Leap 15.3
  • chromium >= 90.0.4430.212-bp153.1.1
Patchnames:
openSUSE Leap 15.3 GA chromium-90.0.4430.212-bp153.1.1
openSUSE Leap 15.4
  • chromium >= 101.0.4951.64-bp154.1.2
Patchnames:
openSUSE Leap 15.4 GA chromium-101.0.4951.64-bp154.1.2
openSUSE Tumbleweed
  • chromedriver >= 93.0.4577.82-1.1
  • chromium >= 93.0.4577.82-1.1
Patchnames:
openSUSE Tumbleweed GA chromedriver-93.0.4577.82-1.1