Advisories ยป MGASA-2014-0134

Updated chromium-browser-stable packages fix security vulnerabilities

Publication date: 19 Mar 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-1700 , CVE-2014-1701 , CVE-2014-1702 , CVE-2014-1703 , CVE-2014-1704 , CVE-2014-1705 , CVE-2014-1713 , CVE-2014-1715

Description

Use-after-free in speech (CVE-2014-1700).

UXSS in events (CVE-2014-1701).

Use-after-free in web database (CVE-2014-1702).

Potential sandbox escape due to a use-after-free in web sockets
(CVE-2014-1703).

Multiple vulnerabilities in V8 fixed in version 3.23.17.18 (CVE-2014-1704).

Memory corruption in V8 (CVE-2014-1705).

Use-after-free in Blink bindings (CVE-2014-1713).

Directory traversal issue (CVE-2014-1715).
                

References

SRPMS

3/tainted

3/core

4/core

4/tainted