-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
**************************************************************************************
Title: Microsoft Security Update Releases
Issued: September 2, 2021
**************************************************************************************
Summary
=======
The following Chrome CVEs have been released on September 2, 2021.
* CVE-2021-26436
* CVE-2021-26439
* CVE-2021-36930
* CVE-2021-38641
* CVE-2021-38642
- CVE-2021-26436 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26436
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
- Updated: N/A
- Aggregate CVE Severity Rating: Important
- CVE-2021-26439 | Microsoft Edge for Android Information Disclosure Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26439
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
- Updated: N/A
- Aggregate CVE Severity Rating: Moderate
- CVE-2021-36930 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36930
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
- Updated: N/A
- Aggregate CVE Severity Rating: Important
- CVE-2021-38641 | Microsoft Edge for Android Spoofing Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38641
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
- Updated: N/A
- Aggregate CVE Severity Rating: Important
- CVE-2021-38642 | Microsoft Edge for iOS Spoofing Vulnerability
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38642
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
- Updated: N/A
- Aggregate CVE Severity Rating: Important
The following CVEs were assigned by Chrome. Microsoft Edge
(Chromium-based) ingests Chromium, which addresses these vulnerabilities. Please see Google Chrome Releases (https://chromereleases.googleblog.com/2021) for more information.
See
for more information about third-party CVEs in the Security Update Guide.
* CVE-2021-30606
* CVE-2021-30607
* CVE-2021-30608
* CVE-2021-30609
* CVE-2021-30610
* CVE-2021-30611
* CVE-2021-30612
* CVE-2021-30613
* CVE-2021-30614
* CVE-2021-30615
* CVE-2021-30616
* CVE-2021-30617
* CVE-2021-30618
* CVE-2021-30619
* CVE-2021-30620
* CVE-2021-30621
* CVE-2021-30622
* CVE-2021-30623
* CVE-2021-30624
Revision Information:
=====================
- Version 1.0
- Reason for Revision: Information published.
- Originally posted: September 2, 2021
**************************************************************************************
Other Information
=================
Recognize and avoid fraudulent email to Microsoft customers:
======================================================================================
If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites.
Microsoft does not distribute security updates via email.
