Updated chromium-browser-stable packages fix multiple vulnerabilities
Publication date: 13 Nov 2013Modification date: 13 Nov 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-2931 , CVE-2013-6621 , CVE-2013-6622 , CVE-2013-6623 , CVE-2013-6624 , CVE-2013-6625 , CVE-2013-6626 , CVE-2013-6627 , CVE-2013-6628 , CVE-2013-6629 , CVE-2013-6630 , CVE-2013-6631
Description
Updated chromium-browser-stable packages fix security vulnerabilities: Various fixes from internal audits, fuzzing and other initiatives (CVE-2013-2931). Use after free related to speech input elements (CVE-2013-6621). Use after free related to media elements (CVE-2013-6622). Out of bounds read in SVG (CVE-2013-6623). Use after free related to 'id' attribute strings (CVE-2013-6624). Use after free in DOM ranges (CVE-2013-6625). Address bar spoofing related to interstitial warnings (CVE-2013-6626). Out of bounds read in HTTP parsing (CVE-2013-6627). Issue with certificates not being checked during TLS renegotiation (CVE-2013-6628). libjpeg 6b and libjpeg-turbo will use uninitialized memory when decoding images with missing SOS data for the luminance component (Y) in presence of valid chroma data (Cr, Cb) (CVE-2013-6629). libjpeg-turbo will use uninitialized memory when handling Huffman tables (CVE-2013-6630). Use after free in libjingle (CVE-2013-6631).
References
- http://permalink.gmane.org/gmane.comp.security.full-disclosure/90919
- http://googlechromereleases.blogspot.com/2013/11/stable-channel-update.html
- https://bugs.mageia.org/show_bug.cgi?id=11657
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2931
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6621
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6622
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6623
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6624
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6625
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6626
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6627
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6628
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6630
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6631
SRPMS
2/core
- chromium-browser-stable-31.0.1650.48-1.mga2
3/core
- chromium-browser-stable-31.0.1650.48-1.mga3
3/tainted
- chromium-browser-stable-31.0.1650.48-1.mga3.tainted