Updated chromium-browser-stable fixes multiple vulnerabilities
Publication date: 23 Dec 2013Modification date: 23 Dec 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-6632 , CVE-2013-6634 , CVE-2013-6635 , CVE-2013-6636 , CVE-2013-6637 , CVE-2013-6638 , CVE-2013-6639 , CVE-2013-6640
Description
Updated chromium-browser-stable packages fix security vulnerabilities: Pinkie Pie discovered multiple memory corruption issues (CVE-2013-6632). Andrey Labunets discovered that the wrong URL was used during validation in the one-click sign on helper (CVE-2013-6634). cloudfuzzer discovered use-after-free issues in the InsertHTML and Indent DOM editing commands (CVE-2013-6635). Bas Venis discovered an address bar spoofing issue (CVE-2013-6636). The chrome 31 development team discovered and fixed multiple issues with potential security impact (CVE-2013-6637). Jakob Kummerow of the Chromium project discovered a buffer overflow in the v8 javascript library (CVE-2013-6638). Jakob Kummerow of the Chromium project discovered an out-of-bounds write in the v8 javascript library (CVE-2013-6639). Jakob Kummerow of the Chromium project discovered an out-of-bounds read in the v8 javascript library (CVE-2013-6640).
References
- http://googlechromereleases.blogspot.com/2013/11/stable-channel-update_14.html
- http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html
- http://www.debian.org/security/2013/dsa-2799
- http://www.debian.org/security/2013/dsa-2811
- https://bugs.mageia.org/show_bug.cgi?id=11935
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6634
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6635
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6636
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6637
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6638
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6639
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6640
SRPMS
3/core
- chromium-browser-stable-31.0.1650.63-1.mga3
3/tainted
- chromium-browser-stable-31.0.1650.63-1.mga3.tainted