Advisories ยป MGASA-2013-0278

Updated chromium-browser-stable package fix security vulnerabilities

Publication date: 13 Sep 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-2887 , CVE-2013-2900 , CVE-2013-2901 , CVE-2013-2902 , CVE-2013-2903 , CVE-2013-2904 , CVE-2013-2905

Description

The chrome 29 development team found various issues from internal fuzzing
audits, and other studies (CVE-2013-2887).

Krystian Bigaj discovered a file handling path sanitization issue
(CVE-2013-2900).

Alex Chapman discovered an integer overflow issue in ANGLE, the Almost
Native Graphics Layer (CVE-2013-2901).

cloudfuzzer discovered a use-after-free issue in XSLT (CVE-2013-2902).

cloudfuzzer discovered a use-after-free issue in HTMLMediaElement
(CVE-2013-2903).

cloudfuzzer discovered a use-after-free issue in XML document parsing
(CVE-2013-2904).

Christian Jaeger discovered an information leak due to insufficient file
permissions (CVE-2013-2905).
                

References

SRPMS

2/core

3/core

3/tainted