Updated chromium-browser-stable/libpng packages fix security vulnerability
Publication date: 07 Jun 2016Modification date: 07 Jun 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-1696 , CVE-2016-1697 , CVE-2016-1698 , CVE-2016-1699 , CVE-2016-1700 , CVE-2016-1701 , CVE-2016-1702 , CVE-2016-1703
Description
Chromium-browser-stable 51.0.2704.79 fixes security issues: cross-origin bypass problems in extension bindings (CVE-2016-1696) and blink (CVE-2016-1697), an information leak in extension bindings (CVE-2016-1698), a parameter sanitization failure in devtools (CVE-2016-1699), use-after-free bugs in extensions (CVE-2016-1700) and autofill (CVE-2016-1701), an out-of-bounds read in skia (CVE-2016-1702), and various fixes from upstream's internal audits, fuzzing, and other initiatives (CVE-2016-1703).
References
- https://bugs.mageia.org/show_bug.cgi?id=18606
- http://googlechromereleases.blogspot.com/2016/06/stable-channel-update.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1696
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1697
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1698
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1699
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1700
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1701
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1702
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1703
SRPMS
5/core
- chromium-browser-stable-51.0.2704.79-1.mga5
- libpng-1.6.22-1.mga5