On Sat, Mar 13, 2021 at 08:38:31AM -0700, Antonio Russo wrote: > Package: chromium > Version: 89.0.4389.82-1 > Severity: grave > Tags: upstream security > Justification: user security hole > X-Debbugs-Cc: aeru...@aerusso.net, Debian Security Team > <t...@security.debian.org> > > Per [1] (or [2], and allegedly [3] which I cannot access): > > > A use after free security issue was found in the Blink component of the > > Chromium browser before version 89.0.4389.90. Google is aware of reports > > that an exploit for this issue exists in the wild. > > Does this also affect libqt5webengine5? I know that its upstream derives > in part from the Chromium source tree.
qtwebengine is not covered by security support, see https://www.debian.org/releases/buster/amd64/release-notes/ch-information.en.html#browser-security Cheers, Moritz
