Advisories ยป MGASA-2014-0037

Updated chromium-browser-stable package fixes multiple vulnerabilities

Publication date: 08 Feb 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2013-6641 , CVE-2013-6643 , CVE-2013-6644 , CVE-2013-6645 , CVE-2013-6646 , CVE-2013-6649 , CVE-2013-6650

Description

Use-after-free related to forms (CVE-2013-6641).

Unprompted sync with an attackers Google account (CVE-2013-6643).

Various fixes from internal audits, fuzzing and other initiatives
(CVE-2013-6644).

Use-after-free related to speech input elements (CVE-2013-6645).

Use-after-free in web workers (CVE-2013-6646).

Use-after-free in SVG images (CVE-2013-6649).

Memory corruption in v8 before version 3.22.24.16 (CVE-2013-6650).
                

References

SRPMS

4/core

4/tainted

3/core

3/tainted