CVE-2021-30587 Common Vulnerabilities and Exposures

Upstream information

CVE-2021-30587 at MITRE

Description

Inappropriate implementation in Compositing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to potentially spoof the contents of the Omnibox (URL bar) via a crafted HTML page.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

No SUSE Bugzilla entries cross referenced.

No SUSE Security Announcements cross referenced.

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Leap 15.4	`libqt5-qtwebengine >= 5.15.9-bp154.1.32`	Patchnames: openSUSE Leap 15.4 GA libqt5-qtwebengine-5.15.9-bp154.1.32
openSUSE Tumbleweed	`libQt5Pdf5 >= 5.15.6-2.1` `libQt5PdfWidgets5 >= 5.15.6-2.1` `libqt5-qtpdf-devel >= 5.15.6-2.1` `libqt5-qtpdf-examples >= 5.15.6-2.1` `libqt5-qtpdf-imports >= 5.15.6-2.1` `libqt5-qtpdf-private-headers-devel >= 5.15.6-2.1` `libqt5-qtwebengine >= 5.15.6-2.1` `libqt5-qtwebengine-devel >= 5.15.6-2.1` `libqt5-qtwebengine-examples >= 5.15.6-2.1` `libqt5-qtwebengine-private-headers-devel >= 5.15.6-2.1`	Patchnames: openSUSE Tumbleweed GA libQt5Pdf5-5.15.6-2.1

SUSE Timeline for this CVE

CVE page created: Wed Jul 21 23:02:47 2021
CVE page last modified: Fri Oct 7 12:51:39 2022