CVE-2021-30528
Published: 7 June 2021
Use after free in WebAuthentication in Google Chrome on Android prior to 91.0.4472.77 allowed a remote attacker who had compromised the renderer process of a user who had saved a credit card in their Google account to potentially exploit heap corruption via a crafted HTML page.
Priority
CVSS 3 base score: 8.8
Status
Package | Release | Status |
---|---|---|
chromium-browser Launchpad, Ubuntu, Debian |
bionic |
Released
(91.0.4472.77-0ubuntu0.18.04.1)
|
focal |
Not vulnerable
(code not present)
|
|
groovy |
Not vulnerable
(code not present)
|
|
hirsute |
Not vulnerable
(code not present)
|
|
impish |
Not vulnerable
(code not present)
|
|
jammy |
Not vulnerable
(code not present)
|
|
trusty |
Does not exist
|
|
upstream |
Released
(91.0.4472.77)
|
|
xenial |
Ignored
(out of standard support)
|