CVE-2021-21159
HIGH8.8EPSS 1.6%chromium - security update
Published: 3/9/2021Modified: 3/9/2026
Also known as:DSA-4886-1DEBIAN-CVE-2021-21159DEBIAN-CVE-2021-21161DEBIAN-CVE-2021-21162DEBIAN-CVE-2021-21163DEBIAN-CVE-2021-21165DEBIAN-CVE-2021-21166DEBIAN-CVE-2021-21167DEBIAN-CVE-2021-21168DEBIAN-CVE-2021-21169DEBIAN-CVE-2021-21170DEBIAN-CVE-2021-21171DEBIAN-CVE-2021-21172DEBIAN-CVE-2021-21173DEBIAN-CVE-2021-21174DEBIAN-CVE-2021-21176DEBIAN-CVE-2021-21177DEBIAN-CVE-2021-21178DEBIAN-CVE-2021-21179DEBIAN-CVE-2021-21180DEBIAN-CVE-2021-21181DEBIAN-CVE-2021-21182DEBIAN-CVE-2021-21183DEBIAN-CVE-2021-21184DEBIAN-CVE-2021-21185DEBIAN-CVE-2021-21186DEBIAN-CVE-2021-21189DEBIAN-CVE-2021-21190DEBIAN-CVE-2021-21191DEBIAN-CVE-2021-21192DEBIAN-CVE-2021-21193DEBIAN-CVE-2021-21195DEBIAN-CVE-2021-21196DEBIAN-CVE-2021-21197DEBIAN-CVE-2021-21198DEBIAN-CVE-2021-21199DEBIAN-CVE-2021-21200
Description
Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Affected packages (2)
- Debian/chromiumfrom 0, < 89.0.4389.82-1
- Debian/chromiumfrom 0, < 89.0.4389.114-1~deb10u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |