Insufficient policy enforcement in WebView in Google Chrome on Android before 83.0.4103.106 allowed a remote malicious user to bypass site isolation via a crafted HTML page.
Synopsis
Important: chromium-browser security update
Type/Severity
Security Advisory: Important
Topic
An update for chromium-browser is now available for Red Hat Enterprise Linux 6 SupplementaryRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability S ...
Several vulnerabilities have been discovered in the chromium web browser
CVE-2020-6423
A use-after-free issue was found in the audio implementation
CVE-2020-6430
Avihay Cohen discovered a type confusion issue in the v8 javascript
library
CVE-2020-6431
Luan Herrera discovered a policy enforcement error
CVE-2020-6432
Luan Her ...
The stable channel has been updated to 8304103106 for Windows, Mac, and Linux, which will roll out over the coming days/weeks
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix We will also retain restrictions if the bug exists in a third party libra ...
Getting Started? »
Buy me a coffee »
Wanna Talk?
π Android Security Notes? » Here, You will find important concepts, resources, hand-crafted and self-curated notes written by a kind-hearted fellow The main purpose of this project is to serve as a First-Aid to newbies (like me) and intermediate peep who perform android security
π€ Wanna contribute?
π A list of writeups from the Google VRP Bug Bounty program
Awesome Google VRP Writeups
π A list of writeups from the Google VRP Bug Bounty program
*writeups: not just writeups
Follow @gvrp_writeups on Twitter to get new writeups straigt into your feed!
Contributing:
If you know of any writeups/videos not listed in this repository, feel free to open a Pull Request
To add a new writeup, simply add a new line to writeupscsv:
[YYYY-MM
An actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentesters, reverse engineer, and redteamers.
Getting Started? »
Buy me a coffee »
Wanna Talk?
π Android Security Notes? » Here, You will find important concepts, resources, hand-crafted and self-curated notes written by a kind-hearted fellow The main purpose of this project is to serve as a First-Aid to newbies (like me) and intermediate peep who perform android security
π€ Wanna contribute?
Created so I can collate all the usefull information and links I've found
Android-BugBounty
Created so I can collate all the usefull information and links I've found
This is a work in progress and will be constantly updated
BugBounty Programs
yeswehackcom
wwwintigriticom/
wwwhackeronecom/
wwwbugcrowdcom/
Activities
securitygrindcom/exploiting-android-components-abusing-activities/
API Stuff
http:
Vulmon