Page MenuHomeSolus

Update brave to 1.13.82
ClosedPublic

Authored by Jacalz on Tue, Sep 8, 4:56 PM.

Details

Summary

Full changelog can be found here.

Security:

  • High CVE-2020-6559: Use after free in presentation API.
  • Medium CVE-2020-6560: Insufficient policy enforcement in autofill.
  • Medium CVE-2020-6561: Inappropriate implementation in Content Security Policy.
  • Medium CVE-2020-6562: Insufficient policy enforcement in Blink.
  • Medium CVE-2020-6563: Insufficient policy enforcement in intent handling.
  • Medium CVE-2020-6564: Incorrect security UI in permissions.
  • Medium CVE-2020-6565: Incorrect security UI in Omnibox.
  • Medium CVE-2020-6566: Insufficient policy enforcement in media.
  • Low CVE-2020-6567: Insufficient validation of untrusted input in command line handling.
  • Low CVE-2020-6568: Insufficient policy enforcement in intent handling.
  • Low CVE-2020-6569: Integer overflow in WebUSB.
  • Low CVE-2020-6570: Side-channel information leakage in WebRTC.
  • Low CVE-2020-6571: Incorrect security UI in Omnibox.
Test Plan
  • Browse a couple sites to make sure that it works correctly.

Diff Detail

Repository
R4107 brave
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.

Event Timeline

Jacalz created this revision.Tue, Sep 8, 4:56 PM
Jacalz requested review of this revision.Tue, Sep 8, 4:56 PM
JoshStrobl accepted this revision.Wed, Sep 9, 3:21 PM
JoshStrobl added a subscriber: JoshStrobl.

LGTM, thanks!

This revision is now accepted and ready to land.Wed, Sep 9, 3:21 PM
This revision was automatically updated to reflect the committed changes.