Advisories ยป MGASA-2013-0321

Updated chromium-browser-stable packages fix multiple vulnerabilities

Publication date: 09 Nov 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-2925 , CVE-2013-2926 , CVE-2013-2927 , CVE-2013-2928

Description

Updated chromium-browser-stable packages fix security vulnerabilities:

Atte Kettunen of OUSPG discover a use-after-free issue in Blink's XML HTTP
request implementation (CVE-2013-2925).

cloudfuzzer discovered a use-after-free issue in the list indenting
implementation (CVE-2013-2926).

cloudfuzzer discovered a use-after-free issue in the HTML form submission
implementation (CVE-2013-2927).

The chrome 30 development team found various issues from internal fuzzing,
audits, and other studies (CVE-2013-2928).

This updates to the newest version from the Linux stable channel, fixing
these and several other issues.
                

References

SRPMS

3/core

3/tainted

2/core