Updated chromium-browser-stable packages fix security vulnerabilities
Publication date: 19 Mar 2014Modification date: 19 Sep 2016
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-1700 , CVE-2014-1701 , CVE-2014-1702 , CVE-2014-1703 , CVE-2014-1704 , CVE-2014-1705 , CVE-2014-1713 , CVE-2014-1715
Description
Use-after-free in speech (CVE-2014-1700). UXSS in events (CVE-2014-1701). Use-after-free in web database (CVE-2014-1702). Potential sandbox escape due to a use-after-free in web sockets (CVE-2014-1703). Multiple vulnerabilities in V8 fixed in version 3.23.17.18 (CVE-2014-1704). Memory corruption in V8 (CVE-2014-1705). Use-after-free in Blink bindings (CVE-2014-1713). Directory traversal issue (CVE-2014-1715).
References
- https://bugs.mageia.org/show_bug.cgi?id=13027
- http://googlechromereleases.blogspot.com/2014/03/stable-channel-update_11.html
- http://googlechromereleases.blogspot.com/2014/03/stable-channel-update_14.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1700
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1701
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1702
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1703
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1704
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1705
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1713
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1715
SRPMS
3/tainted
- chromium-browser-stable-33.0.1750.152-1.mga3.tainted
3/core
- chromium-browser-stable-33.0.1750.152-1.mga3
4/core
- chromium-browser-stable-33.0.1750.152-1.mga4
4/tainted
- chromium-browser-stable-33.0.1750.152-1.mga4.tainted