chromium, v8: multiple vulnerabilities [LWN.net]

Package(s):

chromium, v8

CVE #(s):

CVE-2011-3031 CVE-2011-3032 CVE-2011-3033 CVE-2011-3034 CVE-2011-3035 CVE-2011-3036 CVE-2011-3037 CVE-2011-3038 CVE-2011-3039 CVE-2011-3040 CVE-2011-3041 CVE-2011-3042 CVE-2011-3043 CVE-2011-3044 CVE-2011-3046 CVE-2011-3047

Created:

March 16, 2012

Updated:

November 7, 2012

Description:

From the openSUSE advisory:

Critical CVE-2011-3047: Errant plug-in load and GPU process memory corruption

Critical CVE-2011-3046: UXSS and bad history navigation.

High CVE-2011-3031: Use-after-free in v8 element wrapper.

High CVE-2011-3032: Use-after-free in SVG value handling.

High CVE-2011-3033: Buffer overflow in the Skia drawing library.

High CVE-2011-3034: Use-after-free in SVG document handling.

High CVE-2011-3035: Use-after-free in SVG use handling.

High CVE-2011-3036: Bad cast in line box handling.

High CVE-2011-3037: Bad casts in anonymous block splitting.

High CVE-2011-3038: Use-after-free in multi-column handling.

High CVE-2011-3039: Use-after-free in quote handling.

High CVE-2011-3040: Out-of-bounds read in text handling.

High CVE-2011-3041: Use-after-free in class attribute handling.

High CVE-2011-3042: Use-after-free in table section handling.

High CVE-2011-3043: Use-after-free in flexbox with floats.

High CVE-2011-3044: Use-after-free with SVG animation elements.

Alerts:

(Log in to post comments)