Advisories ยป MGASA-2014-0428

Updated chromium-browser-stable packages fix security vulnerabilities

Publication date: 28 Oct 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3188 , CVE-2014-3189 , CVE-2014-3190 , CVE-2014-3191 , CVE-2014-3192 , CVE-2014-3193 , CVE-2014-3194 , CVE-2014-3195 , CVE-2014-3197 , CVE-2014-3198 , CVE-2014-3199 , CVE-2014-3200

Description

Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Chromium to crash or,
potentially, execute arbitrary code with the privileges of the user running
Chromium (CVE-2014-3188, CVE-2014-3189, CVE-2014-3190, CVE-2014-3191,
CVE-2014-3192, CVE-2014-3193, CVE-2014-3194, CVE-2014-3199, CVE-2014-3200).

Several information leak flaws were found in the processing of malformed
web content. A web page containing malicious content could cause Chromium
to disclose potentially sensitive information (CVE-2014-3195,
CVE-2014-3197, CVE-2014-3198).
                

References

SRPMS

3/tainted

3/core

4/core

4/tainted