Updated chromium-browser-stable packages fix multiple vulnerabilities
Publication date: 22 May 2014Modification date: 22 May 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-1740 , CVE-2014-1741 , CVE-2014-1742
Description
Updated chromium-browser-stable packages fix security vulnerabilities:
Collin Payne discovered a use-after-free issue in chromium's WebSockets
implementation (CVE-2014-1740).
John Butler discovered multiple integer overflow issues in the Blink/Webkit
document object model implementation (CVE-2014-1741).
cloudfuzzer discovered a use-after-free issue in the Blink/Webkit text
editing feature (CVE-2014-1742).
References
- http://googlechromereleases.blogspot.com/2014/05/stable-channel-update.html
- https://www.debian.org/security/2014/dsa-2930
- https://bugs.mageia.org/show_bug.cgi?id=13412
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1740
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1741
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1742
SRPMS
3/tainted
- chromium-browser-stable-34.0.1847.137-1.mga3.tainted
3/core
- chromium-browser-stable-34.0.1847.137-1.mga3
4/tainted
- chromium-browser-stable-34.0.1847.137-1.mga4.tainted
4/core
- chromium-browser-stable-34.0.1847.137-1.mga4